Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=serenaandlily.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 14, 2026
Valid Until
April 14, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:36:18:BF:99:8F:1A:5B:BF:B4:B1:8D:23:3C:FC:84:82:AA:90:34:02:45:77:D1:BF:65:E1:67:44:17:F7:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ymuio.com
*.ymuio.com
1mun.com
*.1mun.com
*.account.1mun.com
*.ww11.1mun.com
*.ww16.1mun.com
adoptionoverseas.org
*.adoptionoverseas.org
*.mail.adoptionoverseas.org
*.canada.citifinanciere.com
citifinanciere.com
*.citifinanciere.com
*.mac4.citifinanciere.com
*.magazine.citifinanciere.com
*.preview.citifinanciere.com
*.s237.citifinanciere.com
*.s349.citifinanciere.com
*.s429.citifinanciere.com
*.wildcard.citifinanciere.com
*.ww25.citifinanciere.com
*.ww38.citifinanciere.com
*.www.citifinanciere.com
configcorp.com
*.configcorp.com
*.laraswift-demo.configcorp.com
*.ww38.configcorp.com
conmdemadre.com
*.conmdemadre.com
fkabi.com
*.fkabi.com
*.comveepee.frshein.com
*.frlaredoute.frshein.com
frshein.com
*.frshein.com
*.google.frshein.com
*.ww25.frshein.com
icyveins.be
*.icyveins.be
*.api.liheap.com
*.florida.liheap.com
*.gov.liheap.com
*.http.liheap.com
*.https.liheap.com
*.i.liheap.com
liheap.com
*.liheap.com
*.mail.liheap.com
*.org.liheap.com
lingeriemodels.com.au
*.lingeriemodels.com.au
modelagent.com.au
*.modelagent.com.au
motorcycleboot.com.au
*.motorcycleboot.com.au
*.billing.multiinternationalfoods.in
multiinternationalfoods.in
*.multiinternationalfoods.in
*.m.papa-si.xyz
papa-si.xyz
*.papa-si.xyz
*.ww25.papa-si.xyz
pornplease.xyz
*.pornplease.xyz
*.thumbs1.pornplease.xyz
*.vcdn1.pornplease.xyz
*.ww25.pornplease.xyz
qx10.pro
*.qx10.pro
rubbishbin.com.au
*.rubbishbin.com.au
*.nityapublicatiowebdisk.salvatorefederico.eu
salvatorefederico.eu
*.salvatorefederico.eu
sanal.life
*.sanal.life
sapinsbarbus.com
*.sapinsbarbus.com
*.shop.sapinsbarbus.com
*.forum.serenaandlily.co
serenaandlily.co
*.serenaandlily.co
*.ww38.serenaandlily.co
*.wwww.serenaandlily.co
wenkuw8.com
*.wenkuw8.com
*.ww25.wenkuw8.com
*.ww38.wenkuw8.com
wfjcsh.org
*.wfjcsh.org
Other domains in certificate