SSL Certificate Analysis for dir.honeclaim.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=modeels.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 23, 2026

Valid Until

April 23, 2026 68 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2C:52:F1:E1:1A:B5:66:55:3D:2B:47:8F:53:B9:0B:80:CF:5A:5C:99:5E:FB:D5:F3:E5:17:79:AC:B7:4C:6D:BD

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

honeclaim.com *.honeclaim.com *.aaa.honeclaim.com *.control.honeclaim.com *.dir.honeclaim.com *.lab.honeclaim.com *.life.honeclaim.com *.m.honeclaim.com *.t.honeclaim.com *.ww11.honeclaim.com *.ww25.honeclaim.com *.ww38.honeclaim.com

Other domains in certificate

allowfarmteam.com *.allowfarmteam.com

brg.us *.brg.us *.ww16.brg.us *.ww25.brg.us

*.acc.callphones.com *.beta.callphones.com *.blog.callphones.com *.br.callphones.com *.by.callphones.com callphones.com *.callphones.com *.controlpanel.callphones.com *.data.callphones.com *.demo.callphones.com *.film.callphones.com *.games.callphones.com *.m.callphones.com *.news.callphones.com *.old.callphones.com *.shop.callphones.com *.users.callphones.com *.webmail.callphones.com *.wildcard.callphones.com

cities.com.au *.cities.com.au *.mx.cities.com.au

creativeconfectionery.com.au *.creativeconfectionery.com.au *.ww25.creativeconfectionery.com.au

emfizyomelikeemiroglu.com *.emfizyomelikeemiroglu.com

freecarrierlookup.co *.freecarrierlookup.co *.hpc.freecarrierlookup.co *.npm.freecarrierlookup.co

guinessworldrecord.com *.guinessworldrecord.com *.kids.guinessworldrecord.com

junkremovalhoover.com *.junkremovalhoover.com *.ww25.junkremovalhoover.com

kushcadets.com *.kushcadets.com *.ww25.kushcadets.com

*.app.l7dex.com l7dex.com *.l7dex.com *.swap.l7dex.com *.ww25.l7dex.com

*.beta.modeels.com *.c.modeels.com modeels.com *.modeels.com *.ns2.modeels.com *.pool.modeels.com *.support.modeels.com *.themes.modeels.com *.top.modeels.com *.windows.modeels.com *.wp.modeels.com

*.link.nagahoki88gacor.club nagahoki88gacor.club *.nagahoki88gacor.club *.server.nagahoki88gacor.club *.ww38.nagahoki88gacor.club

qjxaw.com *.qjxaw.com

samyakdiagnostics.com *.samyakdiagnostics.com

*.portal.scallop.live scallop.live *.scallop.live

supplychainvisibility107426.icu *.supplychainvisibility107426.icu

topicalpaingels.icu *.topicalpaingels.icu