SSL Certificate Analysis for access.coolsgroup.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=22500.vip

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 15, 2026

Valid Until

September 13, 2026 82 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C7:68:40:B2:64:86:7B:60:E8:7B:7F:FA:11:16:26:E3:90:38:58:39:A2:03:C6:0E:33:AF:88:A4:0F:C3:1F:36

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

coolsgroup.com *.coolsgroup.com

Other domains in certificate

22500.vip *.22500.vip

53690.qpon *.53690.qpon

537images41.com *.537images41.com

537images49.com *.537images49.com

537images58.com *.537images58.com

537images60.com *.537images60.com

630vip1.vip *.630vip1.vip

63539.org *.63539.org

8087gd.com *.8087gd.com

8087ha.com *.8087ha.com

858951.xin *.858951.xin

acquisitionpro.info *.acquisitionpro.info

afftvmaster.xyz *.afftvmaster.xyz

ahmedashraf.xyz *.ahmedashraf.xyz

aj-nadarpg.bet *.aj-nadarpg.bet

augentrost.com *.augentrost.com

betterusebfsg.click *.betterusebfsg.click

camerawifihd.com *.camerawifihd.com

eknzmopiug.qpon *.eknzmopiug.qpon

enuda.bid *.enuda.bid

eqihy.work *.eqihy.work

findnewleads.sbs *.findnewleads.sbs

foracquisitionson.info *.foracquisitionson.info

gedpkre1530.vip *.gedpkre1530.vip

kaliyah533.sbs *.kaliyah533.sbs

khvx7yzgxe.top *.khvx7yzgxe.top

trukrodatiga.vip *.trukrodatiga.vip

tyaaa.loan *.tyaaa.loan

udgfvhlwfkhbbzb.my *.udgfvhlwfkhbbzb.my

ukrbd.my *.ukrbd.my

ulprzkyt.mom *.ulprzkyt.mom

unboundvacations.com *.unboundvacations.com

unxfo.my *.unxfo.my

uptgrkltujwyftzt.com *.uptgrkltujwyftzt.com

www2880000.com *.www2880000.com

xn--vyzt80a.com *.xn--vyzt80a.com

xozha.sbs *.xozha.sbs

ylsnw.org *.ylsnw.org

youraihouse.com *.youraihouse.com

ytshanbei.cn *.ytshanbei.cn

yusq13e.top *.yusq13e.top

ywecv.xyz *.ywecv.xyz

zigum.quest *.zigum.quest

zx91123.com *.zx91123.com