SSL Certificate Analysis for 97.2test.com - Security Grade & TLS Configuration

Open Cached · 3h ago

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=easylearning.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 19, 2026

Valid Until

August 17, 2026 65 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D0:15:B2:27:CA:BD:59:51:37:06:9F:21:6C:E9:8F:59:31:BC:F7:8A:61:4B:71:76:C8:24:D0:F4:B6:5E:6F:12

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

2test.com *.2test.com *.110.2test.com *.255.2test.com *.91.2test.com *.97.2test.com *.admin.2test.com *.blog114.2test.com *.carolinas.2test.com *.dev.2test.com *.hp-laserjet-p2015-printer-series.2test.com *.it.2test.com *.members.2test.com *.paypal-www.2test.com *.plat.2test.com *.qc.2test.com *.ww11.2test.com *.ww17.2test.com *.ww38.2test.com *.www.2test.com *.wwww.2test.com

Other domains in certificate

administrationjobs.com.au *.administrationjobs.com.au *.ww38.administrationjobs.com.au

allyouneedisrose.com *.allyouneedisrose.com *.ww25.allyouneedisrose.com

chcksinthemail.com *.chcksinthemail.com *.random.chcksinthemail.com

*.admin.easylearning.it *.autoconfig.easylearning.it easylearning.it *.easylearning.it *.hostmaster.easylearning.it *.mailgate.easylearning.it

fermentgetreide.de *.fermentgetreide.de

movi.st *.movi.st

mycoins.com.au *.mycoins.com.au

pamperrewards.com.au *.pamperrewards.com.au

*.hostmaster.penisweb.com penisweb.com *.penisweb.com *.www.penisweb.com

pepitas.com.au *.pepitas.com.au

*.9now.stag.com.au *.apac.stag.com.au *.documentation.stag.com.au *.extranet.stag.com.au *.mailgate.stag.com.au *.resolve.stag.com.au *.s3.stag.com.au *.share.stag.com.au *.sites.stag.com.au *.sports.stag.com.au stag.com.au *.stag.com.au *.streaming.stag.com.au *.ticket.stag.com.au *.ww0.stag.com.au

*.a.symlab.es *.autoconfig.symlab.es *.ccso.symlab.es *.citaprevia.symlab.es *.cpanel.symlab.es *.demo.symlab.es *.ftp.symlab.es *.informes.symlab.es *.pass.symlab.es *.rywhttppmpsitemap.symlab.es *.rzxvxdemo.symlab.es *.sitemap.symlab.es *.sitemaps.symlab.es symlab.es *.symlab.es *.ubqevxppmpsitemap.symlab.es *.ww.symlab.es *.wwe.symlab.es *.www.symlab.es

*.random.weddingcards.co.uk weddingcards.co.uk *.weddingcards.co.uk

wobble.it *.wobble.it *.www.wobble.it