SSL Certificate Analysis for brainrot-ai.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=wox.au

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 20, 2026

Valid Until

August 18, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7A:66:B2:B3:25:AF:38:F1:2C:5F:B1:E5:65:4E:12:E9:9A:78:6C:D5:65:BF:93:AB:A4:1A:2D:F8:B9:3F:4B:55

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

brainrot-ai.com *.brainrot-ai.com *.api.brainrot-ai.com *.fcpyusecure.brainrot-ai.com *.mail.brainrot-ai.com *.staging.brainrot-ai.com *.twwiiweb.brainrot-ai.com *.www.brainrot-ai.com

Other domains in certificate

861betvole.com *.861betvole.com *.m.861betvole.com *.sandbox.861betvole.com

*.1846m.9bccde.top *.2dbks.9bccde.top *.2l6wm.9bccde.top 9bccde.top *.9bccde.top *.enr3p.9bccde.top *.fdb74.9bccde.top *.l0r4m.9bccde.top *.l1v3f.9bccde.top *.lkzdx.9bccde.top *.n2pro.9bccde.top *.nxc75.9bccde.top *.rkuvx.9bccde.top *.vhakn.9bccde.top

amitrano.com *.amitrano.com *.ww16.amitrano.com

boy138vip.com *.boy138vip.com *.cpanel.boy138vip.com *.www.boy138vip.com

careersadvisor.com.au *.careersadvisor.com.au *.www.careersadvisor.com.au

eastorange.it *.eastorange.it

economic-theme-templates.online *.economic-theme-templates.online *.wildcard.economic-theme-templates.online

egzno.top *.egzno.top *.jyikv.egzno.top *.l8kqx.egzno.top *.xbh6h.egzno.top

*.beta.goingozo.com goingozo.com *.goingozo.com

hackingway.com *.hackingway.com

hostiger.co *.hostiger.co *.mail.hostiger.co *.net.hostiger.co *.ww25.hostiger.co *.ww38.hostiger.co

microcreditoitalia.org *.microcreditoitalia.org

*.hostmaster.moos.it moos.it *.moos.it *.ww16.moos.it *.ww25.moos.it

mortgageeinpossession.com.au *.mortgageeinpossession.com.au

*.alpha.plilips.com *.ce.plilips.com *.forums.plilips.com *.lighting.plilips.com *.pda.plilips.com plilips.com *.plilips.com *.radonc.plilips.com *.status.plilips.com *.test.plilips.com *.up.plilips.com *.webdesign.plilips.com *.webmail.plilips.com *.ww25.plilips.com

simongifcard.com *.simongifcard.com

ultimateair.com.au *.ultimateair.com.au

*.cybernexus.wox.au *.random.wox.au wox.au *.wox.au

xaiomi.es *.xaiomi.es