SSL Certificate Analysis for beerfund.au - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=www.zeirho.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

November 23, 2025

Valid Until

February 21, 2026 88 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

FC:B8:3A:45:10:AD:00:5E:1F:F1:09:33:91:51:91:B0:17:67:C7:F6:79:1B:AC:7F:3E:55:77:59:CD:BD:49:55

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

beerfund.au

Other domains in certificate

tournaments.13tcg.com

24-7watchsecurity.com

xea.abcd.ar

aevlabs.com

afritrak.com

insight.agechecker.net

clocking.analyzee.io

irecycle.app.arrx.uk

www.asobito.jp

live.bhagwatilaw.com

bhatt.io

bhavyawani.xyz

binarybotz.com

passwordcsworkindia.capitaland.com

cappuccino.fm

climbradar.net

servitzhome-freight.fritz.co.il

combat.school

connect2roots.org

contivix.com

career.costco.co.jp

cribolage.com

mba.cronysoftwares.com vta.cronysoftwares.com

daniepaul.com

www.dayaonweb.dev

www.doctolib.info

buy.dteam.cloud

eflorendo.com www.eflorendo.com

www.elephant.gift

www.embed.so

www.fashio.se

www.fixyourmachine.com

kuisto.foder.fr

fullscreencallerid.com

www.fysiosense.dk

dev.g-t.app

devfest19.gdgvenezia.it

www.giftylabs.com

www.gnanodaya.org

gofindme.chat

go.isalon.vn

it-playground.dev

ivanamudron.com

notes.jayhsia.com www.jayhsia.com

jcspgh.com

joppehoekstra.nl

kag-ai.com

siglo21-test.klarway.com

coupon.levietgroup.co.nz

lightsaber.red

www.lorenfryxell.com

delete-account.migrant.solutions

www.dev.milramasapp.com.br

atomic-ui.miyauchi.dev

www.mklenterprises.com

mobileforst.com

www.monyandj.com

www.morgankjellin.com

musturd.tech

www.nepalesetaste.com

nestructures.co

okhan.xyz

www.ordryna.app

impbrands.parkalot.io ipt.parkalot.io

www.phonobox.mx

www.plenavida.com.br

www.procedurallabs.net

beta.pte.tools

app.qrgroove.com

www.rescapes.net

templates.rinnolab.cl

rioslab.it

deepfocusbuddy.ryanhaire.ca

student.sawir.app

planningpoker.scrum-tips.com

shenlan.me

so.shooketh.app

www.smes.com.ar

asr.stokapps.com

members.strongbalancedsolutions.com

beta.demo.teamraise.app

facilitycalendar.tennislockerapp.com

info.thoosch.de

www.timeio.com

tipsymeter.site

tvsider.no

cyrillic.typing-up.pro

united4education.nl

analytic.vais.vn

www.vamsigastroandlivercare.com

portal.vipdeskconnect.com

beta.app.wildorchidwatch.org

goto.worker-list.info

www.zeirho.com

Free Cloud Credits

Get free credits to test cloud platforms