SSL Certificate Analysis for foundry.meme - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=viagensefotos.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 24, 2026

Valid Until

July 23, 2026 60 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

6C:EB:F5:7E:FC:5A:8D:E7:42:92:7E:13:35:67:04:28:36:32:66:71:17:59:2E:97:4E:2A:79:28:0E:0B:35:A6

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

foundry.meme *.foundry.meme *.admin.foundry.meme *.app.foundry.meme *.assets.foundry.meme *.members.foundry.meme

Other domains in certificate

0e37deyh.xyz *.0e37deyh.xyz *.nhi.0e37deyh.xyz

bestlocations.it *.bestlocations.it

cryptocrew.co *.cryptocrew.co *.hostmaster.cryptocrew.co *.mx.cryptocrew.co *.www.cryptocrew.co

fitnesshouse.co *.fitnesshouse.co *.mail.fitnesshouse.co *.sitemaps.fitnesshouse.co

*.418db621-e729-412c-943f-f06689e3d259.gefew.academy *.607ea3b5-1af8-4e52-abaa-b0d6c8d7d32e.gefew.academy *.api.gefew.academy *.backend.gefew.academy *.blog.gefew.academy *.d80d491d-b940-4967-8246-6708e74a74a2.gefew.academy *.demo.gefew.academy *.evolution.gefew.academy *.f99b7954-7b50-4539-9212-9bd8d20a7767.gefew.academy *.formation.gefew.academy gefew.academy *.gefew.academy

heiwa.it *.heiwa.it *.hostmaster.heiwa.it *.mx.heiwa.it *.smtpmail.heiwa.it

*.hostmaster.investorsnetwork.co.za *.imap.investorsnetwork.co.za investorsnetwork.co.za *.investorsnetwork.co.za *.mail.investorsnetwork.co.za *.smtp.investorsnetwork.co.za *.webmail.investorsnetwork.co.za

*.b.livegirlreview.com livegirlreview.com *.livegirlreview.com

*.forum.patparkerflorist.com *.fr.patparkerflorist.com *.jobs.patparkerflorist.com *.m.patparkerflorist.com patparkerflorist.com *.patparkerflorist.com *.support.patparkerflorist.com

*.photo.preinvestors.com preinvestors.com *.preinvestors.com

*.mail.smaxtv.com smaxtv.com *.smaxtv.com *.webdisk.smaxtv.com

southerncapturedbelles.com *.southerncapturedbelles.com *.ww25.southerncapturedbelles.com *.ww38.southerncapturedbelles.com

*.orgww17.theinternetarchive.org theinternetarchive.org *.theinternetarchive.org *.ww25.theinternetarchive.org

*.mail.ust.tools *.sitemaps.ust.tools ust.tools *.ust.tools

*.topww25.uzu59.top uzu59.top *.uzu59.top *.ww16.uzu59.top *.ww38.uzu59.top

*.com.viagensefotos.com viagensefotos.com *.viagensefotos.com

*.life.wapsky.ru *.lov.wapsky.ru *.sw.wapsky.ru *.vip.wapsky.ru wapsky.ru *.wapsky.ru

*.ww17.x-tubehot.net x-tubehot.net *.x-tubehot.net