SSL Certificate Analysis for f168ok.pro - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=whitesunday.co

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 04, 2026

Valid Until

August 02, 2026 61 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

90:5A:BA:78:56:F6:B1:BD:91:38:75:59:C7:94:EB:E6:A3:B6:14:7D:FE:EF:AC:28:0C:A8:19:00:11:91:1E:69

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

f168ok.pro *.f168ok.pro

Other domains in certificate

1898.in *.1898.in *.metric.1898.in

aafcdn.xyz *.aafcdn.xyz *.ba.aafcdn.xyz *.dc.aafcdn.xyz *.ef.aafcdn.xyz *.eh.aafcdn.xyz *.fd.aafcdn.xyz *.ge.aafcdn.xyz *.gf.aafcdn.xyz *.gh.aafcdn.xyz *.hd.aafcdn.xyz *.hg.aafcdn.xyz *.ww1.aafcdn.xyz

*.525v4.adtsecurity.top *.95lw2.adtsecurity.top adtsecurity.top *.adtsecurity.top *.cxie3.adtsecurity.top *.nan1j.adtsecurity.top

*.2l6wm.chcryptocurrency.top *.5jsd7.chcryptocurrency.top chcryptocurrency.top *.chcryptocurrency.top *.tpxa3.chcryptocurrency.top

dewakoin99-asli.com *.dewakoin99-asli.com

*.301e0f5a-a937-4066-a6c3-9caa5535e437.faf5752cf93e284a.com faf5752cf93e284a.com *.faf5752cf93e284a.com *.vpn.faf5752cf93e284a.com

golady.info *.golady.info *.ww38.golady.info

*.94fcf228-f824-441c-befb-4487958a43d9.hostingf.top *.aqzmk.hostingf.top *.g89kw.hostingf.top hostingf.top *.hostingf.top *.lcjev.hostingf.top

hostingps.top *.hostingps.top *.jyikv.hostingps.top

*.hosting.mifacturahoy.com *.images.mifacturahoy.com mifacturahoy.com *.mifacturahoy.com *.mobi.mifacturahoy.com *.online.mifacturahoy.com *.ufa.mifacturahoy.com

*.hostmaster.omoga.com *.login.omoga.com omoga.com *.omoga.com *.random.omoga.com

qrion.ai *.qrion.ai

*.a.salestotals.com salestotals.com *.salestotals.com *.vpn.salestotals.com

sentiacore.ai *.sentiacore.ai

*.32.southwind.studio southwind.studio *.southwind.studio

*.api.vinit.inc vinit.inc *.vinit.inc *.www.vinit.inc

*.a9c5ab5f-99fe-4c34-85a5-3ed1e9fbf455.wdw.digital *.api.wdw.digital *.app.wdw.digital *.bvsq54.wdw.digital *.c23debca-9f2e-4da3-be67-9ddded4b8f6c.wdw.digital *.cdn1.wdw.digital *.f17552e2-5bbe-4cea-8b2c-cf76cdc8545b.wdw.digital *.gporybzarbndgjbbvsq54.wdw.digital *.hostmaster.wdw.digital *.ndgjbbvsq54.wdw.digital wdw.digital *.wdw.digital *.webmail.wdw.digital *.www.wdw.digital

whitesunday.co *.whitesunday.co