SSL Certificate Analysis for flowerboxes.com.au - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=slipway.com.au

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

March 29, 2026

Valid Until

June 27, 2026 32 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

6C:D0:BC:DC:84:83:52:61:90:83:64:D2:AC:3C:FD:78:00:66:E8:BF:A5:26:EB:E1:B0:85:A9:49:AE:47:0F:02

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

flowerboxes.com.au *.flowerboxes.com.au

Other domains in certificate

*.11.aadam4adam.com aadam4adam.com *.aadam4adam.com *.comww17.aadam4adam.com *.ww25.aadam4adam.com

abellaanderson.com *.abellaanderson.com *.random.abellaanderson.com *.ww16.abellaanderson.com *.ww17.abellaanderson.com

blackcloud.com.au *.blackcloud.com.au *.ww16.blackcloud.com.au *.ww17.blackcloud.com.au *.ww38.blackcloud.com.au

clickrent.com.au *.clickrent.com.au

covertca.com *.covertca.com *.hostmaster.covertca.com

*.archive.cryptoincubator.com cryptoincubator.com *.cryptoincubator.com

hazelnut.com.au *.hazelnut.com.au

homegrownfreaks.com *.homegrownfreaks.com

ipage.cm *.ipage.cm *.ns2.ipage.cm *.onreparetonelectroco.ipage.cm

lally.au *.lally.au *.ww25.lally.au *.ww38.lally.au

macsakes.com *.macsakes.com

*.led.mask.au mask.au *.mask.au

mittenfest.org *.mittenfest.org *.ww38.mittenfest.org

mottos.com.au *.mottos.com.au

novel37.com *.novel37.com *.ww25.novel37.com

*.nospam.openhorizon.com openhorizon.com *.openhorizon.com *.superset.openhorizon.com *.ww38.openhorizon.com

openkbank.es *.openkbank.es

operatingsystems.com.au *.operatingsystems.com.au

slipway.com.au *.slipway.com.au

*.api.tokenpceket.pro *.app.tokenpceket.pro *.download.tokenpceket.pro *.m.tokenpceket.pro *.news.tokenpceket.pro *.notexistsdownload.tokenpceket.pro *.notexistspic.tokenpceket.pro *.notexistssitemap.tokenpceket.pro *.pic.tokenpceket.pro *.sitemap.tokenpceket.pro *.sitemaps.tokenpceket.pro tokenpceket.pro *.tokenpceket.pro *.wap.tokenpceket.pro *.web.tokenpceket.pro *.www.tokenpceket.pro

tudinero.es *.tudinero.es *.ww43.tudinero.es

upb.com.au *.upb.com.au

*.random.voicepla.net voicepla.net *.voicepla.net

vpnpla.net *.vpnpla.net

*.random.westernwoman.com westernwoman.com *.westernwoman.com