Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=yyvfs.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 30, 2026
Valid Until
August 28, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:D1:DD:4B:5A:D9:30:5A:05:8E:78:85:82:73:A5:70:CA:83:8B:B2:33:9F:43:37:6A:7C:20:56:91:74:1A:84
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
wbf79.icu
*.wbf79.icu
afae03vmma.click
*.afae03vmma.click
*.dev.afae03vmma.click
*.m.afae03vmma.click
*.staging.afae03vmma.click
*.test.afae03vmma.click
avvajordan.com
*.avvajordan.com
*.ww38.avvajordan.com
*.02a2d967-484f-4368-b99d-d67eed54e5a4.blyentriox.live
blyentriox.live
*.blyentriox.live
*.sitemap.blyentriox.live
corporateloans.uk
*.corporateloans.uk
*.demo.corporateloans.uk
*.cojendpa.dea.com.au
dea.com.au
*.dea.com.au
*.kiafinance.dea.com.au
*.web.dea.com.au
ecowars.org
*.ecowars.org
eeryf.cc
*.eeryf.cc
*.download.grupoabanca.sbs
*.goldapple.grupoabanca.sbs
grupoabanca.sbs
*.grupoabanca.sbs
*.megamarket.grupoabanca.sbs
*.net.grupoabanca.sbs
hekasi.pro
*.hekasi.pro
irkjm.qpon
*.irkjm.qpon
*.extranet.liance.xyz
liance.xyz
*.liance.xyz
*.md.liance.xyz
*.westernal.liance.xyz
*.apps.matthewmaguire.com
*.cloud.matthewmaguire.com
*.com.matthewmaguire.com
matthewmaguire.com
*.matthewmaguire.com
*.ra.matthewmaguire.com
*.rdweb.matthewmaguire.com
*.remote.matthewmaguire.com
*.remoto.matthewmaguire.com
*.ts.matthewmaguire.com
nanpingtongxin.cn
*.nanpingtongxin.cn
*.api.nftgamezone.com
*.dev.nftgamezone.com
*.m.nftgamezone.com
*.magento.nftgamezone.com
nftgamezone.com
*.nftgamezone.com
*.rustore.nftgamezone.com
*.shop.nftgamezone.com
*.store.nftgamezone.com
*.test.nftgamezone.com
nwchristiancu.org
*.nwchristiancu.org
*.0xpd8m.omenart.org
omenart.org
*.omenart.org
online-advertising-search.click
*.online-advertising-search.click
oracleflexcubesoftware.com
*.oracleflexcubesoftware.com
paitokamboja.com
*.paitokamboja.com
pcmc-712.info
*.pcmc-712.info
*.mail.sepehrcandle.com
sepehrcandle.com
*.sepehrcandle.com
*.ww38.sepehrcandle.com
*.ai.thickwhitegirls.com
*.dev.thickwhitegirls.com
thickwhitegirls.com
*.thickwhitegirls.com
timbercladding.org
*.timbercladding.org
*.bw102.yyvfs.com
yyvfs.com
*.yyvfs.com
Other domains in certificate