SSL Certificate Analysis for dan.analystestimate.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=comidasaludable.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 02, 2026

Valid Until

July 31, 2026 55 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

19:C5:C5:69:0D:16:CD:82:DF:F4:99:7D:80:E5:62:4F:90:8F:19:EB:31:E3:74:EA:4D:6A:3B:79:16:A0:50:A5

Alternative Names

87 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains

analystestimate.com *.analystestimate.com *.hostmaster.analystestimate.com *.ww25.analystestimate.com

Other domains in certificate

13build.au *.13build.au

adnan.studio *.adnan.studio

aianswer.de *.aianswer.de *.ww16.aianswer.de

al-nateega.com *.al-nateega.com *.api.al-nateega.com *.full.al-nateega.com

bluerosethumbs.com *.bluerosethumbs.com *.ww25.bluerosethumbs.com *.www.bluerosethumbs.com

boz388.co.uk *.boz388.co.uk *.www.boz388.co.uk

brookslandingdiner.com *.brookslandingdiner.com

catalogoelectropepe.com *.catalogoelectropepe.com *.ww38.catalogoelectropepe.com

coatglam.com *.coatglam.com

comidasaludable.xyz *.comidasaludable.xyz *.mis.comidasaludable.xyz *.ww25.comidasaludable.xyz *.ww38.comidasaludable.xyz *.www.comidasaludable.xyz

crowddeals.com.au *.crowddeals.com.au *.mailserver.crowddeals.com.au *.ww16.crowddeals.com.au

gedelo.com *.gedelo.com

goldbet.live *.goldbet.live

*.daftarfilm.linkpedia.live linkpedia.live *.linkpedia.live *.sch.linkpedia.live *.wp.linkpedia.live

lolita.au *.lolita.au *.ww38.lolita.au

*.mailx.perthfamilylawyers.au perthfamilylawyers.au *.perthfamilylawyers.au *.random.perthfamilylawyers.au

*.m.pitbull-breeders.com pitbull-breeders.com *.pitbull-breeders.com

timi5269.cc *.timi5269.cc *.ww38.timi5269.cc *.www.timi5269.cc

*.autodiscover.townandcountrymotorinn.com.au *.cpanel.townandcountrymotorinn.com.au *.cpcalendars.townandcountrymotorinn.com.au *.mail.townandcountrymotorinn.com.au townandcountrymotorinn.com.au *.townandcountrymotorinn.com.au *.webdisk.townandcountrymotorinn.com.au *.ww38.townandcountrymotorinn.com.au *.www.townandcountrymotorinn.com.au

utout.pro *.utout.pro *.www.utout.pro

viplovers.club *.viplovers.club *.ww38.viplovers.club

*.dev.viralvideotube.site *.email.viralvideotube.site *.flowise.viralvideotube.site viralvideotube.site *.viralvideotube.site *.ww25.viralvideotube.site

*.superset.yyds008.cc *.ww38.yyds008.cc yyds008.cc *.yyds008.cc