SSL Certificate Analysis for es.poner.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=xekhach.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 14, 2026

Valid Until

August 12, 2026 67 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

38:98:02:80:3D:C1:D6:7E:8F:43:61:10:8A:1C:DE:7D:A7:76:8E:EC:47:2E:75:F7:22:8C:05:F8:B3:3B:09:FB

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

poner.com *.poner.com *.a.poner.com *.access.poner.com *.ass.poner.com *.de.poner.com *.e.poner.com *.es.poner.com *.que.poner.com *.quiera.poner.com *.vpn.poner.com *.ww16.poner.com *.xxx.poner.com

Other domains in certificate

6figureslive.com *.6figureslive.com *.admin.6figureslive.com *.api.6figureslive.com *.app.6figureslive.com *.backend.6figureslive.com *.checkout.6figureslive.com *.demo.6figureslive.com *.dev.6figureslive.com *.hostmaster.6figureslive.com *.live.6figureslive.com *.remote.6figureslive.com *.sitemap.6figureslive.com *.sitemaps.6figureslive.com *.staging.6figureslive.com *.ww1.6figureslive.com *.ww25.6figureslive.com *.www.6figureslive.com

amiloaded.com *.amiloaded.com *.ww25.amiloaded.com *.www.amiloaded.com

bestoacmoaltou.net *.bestoacmoaltou.net *.ww38.bestoacmoaltou.net

compramos-tu-auto.net *.compramos-tu-auto.net

*.archive.copysite.online copysite.online *.copysite.online *.landings.copysite.online *.projs.copysite.online *.ww25.copysite.online *.www.copysite.online

donomano.shop *.donomano.shop *.mysql.donomano.shop *.pma.donomano.shop *.ww38.donomano.shop *.www.donomano.shop

*.demo.elvispub.com elvispub.com *.elvispub.com *.ww38.elvispub.com

goodlivinginaz.com *.goodlivinginaz.com *.ww25.goodlivinginaz.com

*.comwww.halsh.ltd halsh.ltd *.halsh.ltd *.lcc.halsh.ltd

hokipalace31.com *.hokipalace31.com *.ww25.hokipalace31.com

*.controlpanel.locovore.com *.crm.locovore.com *.cs.locovore.com *.demo.locovore.com *.e.locovore.com *.hostmaster.locovore.com *.hrm.locovore.com locovore.com *.locovore.com *.origin.locovore.com *.portal.locovore.com *.projects.locovore.com *.ua.locovore.com *.users.locovore.com *.video.locovore.com *.vip.locovore.com *.wap.locovore.com *.ww1.locovore.com *.ww25.locovore.com *.ww38.locovore.com

*.cpcontacts.xekhach.xyz xekhach.xyz *.xekhach.xyz