SSL Certificate Analysis for cw26.cc - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=serch27.biz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 13, 2026

Valid Until

August 11, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

53:A5:B9:F3:3B:39:A7:90:48:D6:CB:A0:03:3B:59:F0:E3:9B:3D:DC:71:C7:F5:31:77:39:AB:08:7B:0B:CA:87

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

cw26.cc *.cw26.cc

Other domains in certificate

88pink-ai.com *.88pink-ai.com *.ww38.88pink-ai.com

allofcraigslist.org *.allofcraigslist.org *.parksidwww.allofcraigslist.org *.ww35.allofcraigslist.org *.ww38.allofcraigslist.org

apikeckotatahuna.org *.apikeckotatahuna.org *.bumndt.apikeckotatahuna.org

arbeitnehmronline.de *.arbeitnehmronline.de

cyberfin.com *.cyberfin.com

cybergis.org *.cybergis.org *.gameinstitute.cybergis.org *.rgfn.cybergis.org *.svn.cybergis.org *.wiki.cybergis.org

cybersecurity.ltd *.cybersecurity.ltd

czyu468.cc *.czyu468.cc

dailyflash.quest *.dailyflash.quest

debt-relief-se-6386.sbs *.debt-relief-se-6386.sbs

devjigsaw.com *.devjigsaw.com

dhmain512pm.xyz *.dhmain512pm.xyz

diwanbahadurbhat.xyz *.diwanbahadurbhat.xyz

diytek.com *.diytek.com

do4me.xyz *.do4me.xyz

doctolib-comptes.com *.doctolib-comptes.com

domainmarket.biz *.domainmarket.biz

drcemozcan.com *.drcemozcan.com *.ww25.drcemozcan.com

esercizioquotidiano.com *.esercizioquotidiano.com *.hostmaster.esercizioquotidiano.com

*.admin.go2deals.shop *.adminb.go2deals.shop *.download.go2deals.shop go2deals.shop *.go2deals.shop *.superset.go2deals.shop *.ww25.go2deals.shop *.ww38.go2deals.shop *.www.go2deals.shop

*.ahca.myfkorida.com *.deo.myfkorida.com *.fdc.myfkorida.com myfkorida.com *.myfkorida.com *.ww16.myfkorida.com

*.cpanel.sdfcuib.org sdfcuib.org *.sdfcuib.org *.ww25.sdfcuib.org *.www.sdfcuib.org

*.alpha.serch27.biz serch27.biz *.serch27.biz *.ww16.serch27.biz

*.ww25.wwoclap.com wwoclap.com *.wwoclap.com

yichengtz.cn *.yichengtz.cn

youcontrolit.com *.youcontrolit.com

yourkeysyourbitcoin.com *.yourkeysyourbitcoin.com

zebracargoinltd.com *.zebracargoinltd.com

zlatarskibiseri.com *.zlatarskibiseri.com

zuuperdeals.info *.zuuperdeals.info