SSL Certificate Analysis for 834011.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=sansaconsulting.online

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 12, 2026

Valid Until

September 10, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

28:50:68:AC:00:02:9E:A4:80:8F:00:9F:52:2A:19:F4:63:29:2C:F5:72:2F:F2:A8:8A:C2:AF:75:F1:84:D3:24

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

834011.com *.834011.com *.random.834011.com

Other domains in certificate

*.31.670.it *.5.670.it *.52.670.it 670.it *.670.it *.7.670.it *.74.670.it *.80.670.it *.board.670.it *.console.670.it *.e.670.it *.internal.670.it *.pin-hole.670.it *.redash.670.it

*.automotive.auvtion.com auvtion.com *.auvtion.com *.blog.auvtion.com *.calc.auvtion.com *.d3.auvtion.com *.falcon.auvtion.com *.hideip.auvtion.com *.horse.auvtion.com *.hosting.auvtion.com *.index.auvtion.com *.insight.auvtion.com *.loja.auvtion.com *.mx.auvtion.com *.mx5.auvtion.com *.nl.auvtion.com *.old.auvtion.com *.pages.auvtion.com *.post.auvtion.com *.ww17.auvtion.com

*.airflow.clutch.digital clutch.digital *.clutch.digital

*.admin.gamesplinko.com *.app.gamesplinko.com *.demo.gamesplinko.com gamesplinko.com *.gamesplinko.com *.public.gamesplinko.com

lv52casino.vip *.lv52casino.vip

pixelcoral.com *.pixelcoral.com *.webdisk.pixelcoral.com

r648vu.cyou *.r648vu.cyou

s9lq4i.cyou *.s9lq4i.cyou

salhap.com *.salhap.com

*.admin.sansaconsulting.online sansaconsulting.online *.sansaconsulting.online *.uat.sansaconsulting.online *.wsorxapi.sansaconsulting.online

search-online-testing-germany.sbs *.search-online-testing-germany.sbs

*.git.ubusercontent.com *.gith.ubusercontent.com *.github.ubusercontent.com *.raw.ubusercontent.com ubusercontent.com *.ubusercontent.com

*.chatapp1.wicsoft.cloud *.gnamangnaman.wicsoft.cloud *.interco.wicsoft.cloud *.matca.wicsoft.cloud *.shippress-api.wicsoft.cloud *.shippressapk.wicsoft.cloud *.smsadmin.wicsoft.cloud *.smsstat.wicsoft.cloud *.test.wicsoft.cloud wicsoft.cloud *.wicsoft.cloud *.wicsoftpay.wicsoft.cloud *.wictransmobile.wicsoft.cloud

*.bbs.xxj3s.xyz *.mailin.xxj3s.xyz *.ww25.xxj3s.xyz xxj3s.xyz *.xxj3s.xyz