SSL Certificate Analysis for et.008tg.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=mfg.com.pl

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 13, 2026

Valid Until

September 11, 2026 82 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

DD:18:0E:60:93:93:DF:E6:03:F0:64:CF:77:85:3F:1A:59:09:4C:CD:24:AF:60:7A:1C:4B:DE:9D:9F:FC:04:2E

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

008tg.com *.008tg.com *.as.008tg.com *.dj.008tg.com *.et.008tg.com *.gf.008tg.com *.ha.008tg.com *.hj.008tg.com *.hr.008tg.com *.ht.008tg.com *.ji.008tg.com *.jj.008tg.com *.kc.008tg.com *.mj.008tg.com *.mk.008tg.com *.mt.008tg.com *.ra.008tg.com *.rf.008tg.com *.rz.008tg.com *.sc.008tg.com *.su.008tg.com *.tr.008tg.com

Other domains in certificate

79875.my *.79875.my

*.api.app8864.com app8864.com *.app8864.com *.cc.app8864.com *.club.app8864.com *.cn.app8864.com *.com.app8864.com *.comip.app8864.com *.dev.app8864.com *.fun.app8864.com *.mail.app8864.com *.me.app8864.com *.monster.app8864.com *.net.app8864.com *.space.app8864.com *.test.app8864.com *.tv.app8864.com *.us.app8864.com *.vip.app8864.com *.xom.app8864.com *.xyz.app8864.com

artdutemps.shop *.artdutemps.shop *.assets.artdutemps.shop *.signal.artdutemps.shop

career.com.au *.career.com.au *.cisra.career.com.au *.xstrata.career.com.au

da54c3.co *.da54c3.co *.us45827eingsaz.da54c3.co *.us45827glhcs.da54c3.co *.us45827gpybc.da54c3.co *.us45827hmw.da54c3.co *.us45827ldulspw.da54c3.co *.us45827lyj.da54c3.co *.us45827lzqku.da54c3.co *.us45827msjml.da54c3.co *.us45827omoti.da54c3.co *.us45827rbclvia.da54c3.co *.us45827tupg.da54c3.co *.us45827wpk.da54c3.co *.us45827ylwqrk.da54c3.co

dasolo.co *.dasolo.co *.server.dasolo.co *.www.dasolo.co

giantgator.com *.giantgator.com *.remoto.giantgator.com

*.demo.idrrp.games idrrp.games *.idrrp.games *.staging.idrrp.games *.test.idrrp.games *.www.idrrp.games

*.cdn.megasound.media megasound.media *.megasound.media

mfg.com.pl *.mfg.com.pl

*.sitemaps.xn--yfrp4m0wcr42c.com *.wildcard.xn--yfrp4m0wcr42c.com xn--yfrp4m0wcr42c.com *.xn--yfrp4m0wcr42c.com