SSL Certificate Analysis for aeroplane.cc - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=vaxesi.pro

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 20, 2026

Valid Until

August 18, 2026 71 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

25:85:2F:88:13:EF:23:3B:31:02:98:A6:76:CF:8B:35:7C:7D:08:1B:5D:6B:C3:F9:50:53:A0:93:2E:44:97:79

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

aeroplane.cc *.aeroplane.cc *.dev.aeroplane.cc *.ftp.aeroplane.cc *.ww25.aeroplane.cc

Other domains in certificate

3fomo.xyz *.3fomo.xyz *.d.3fomo.xyz

allforwebsites.com *.allforwebsites.com *.apple.allforwebsites.com *.artist.allforwebsites.com *.pay.allforwebsites.com

*.admin.bostonforklift.center bostonforklift.center *.bostonforklift.center *.m.bostonforklift.center

*.blog.bouncerpartyrentals.net bouncerpartyrentals.net *.bouncerpartyrentals.net *.cvjjdblog.bouncerpartyrentals.net *.dev.bouncerpartyrentals.net *.webmail.bouncerpartyrentals.net *.www.bouncerpartyrentals.net

*.admin.coldagencyd.com *.api.coldagencyd.com *.app.coldagencyd.com coldagencyd.com *.coldagencyd.com *.www.coldagencyd.com

*.eng.gm.com.au gm.com.au *.gm.com.au *.ke.gm.com.au *.water.gm.com.au *.zhuanti.gm.com.au

*.chat.mimogram.com *.mail.mimogram.com mimogram.com *.mimogram.com

*.live.newsfootball.site newsfootball.site *.newsfootball.site

*.app.pigyxu.pro *.mail.pigyxu.pro pigyxu.pro *.pigyxu.pro *.www.pigyxu.pro

*.bridge.praeb.com praeb.com *.praeb.com

*.ftp.rajabar189.net rajabar189.net *.rajabar189.net

*.mail.shatnerds.com shatnerds.com *.shatnerds.com

*.a.superiorcherry.com *.mail.superiorcherry.com superiorcherry.com *.superiorcherry.com

*.api.traficapturer.info *.app.traficapturer.info *.mail.traficapturer.info traficapturer.info *.traficapturer.info

*.api.vaxesi.pro *.mail.vaxesi.pro *.sitemap.vaxesi.pro vaxesi.pro *.vaxesi.pro

*.m.vici.lol *.mail.vici.lol vici.lol *.vici.lol

*.ftp.xxxphimsex.net xxxphimsex.net *.xxxphimsex.net

*.m.yeahtop.com *.mail.yeahtop.com *.mail10.yeahtop.com *.mjdirsmtp.yeahtop.com *.webmail.yeahtop.com *.website.yeahtop.com yeahtop.com *.yeahtop.com

*.mail.yonhancharger.com yonhancharger.com *.yonhancharger.com