SSL Certificate Analysis for funkitalady.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=rajasthan.travel

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 16, 2026

Valid Until

August 14, 2026 58 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

43:8E:33:96:05:68:0E:3A:BE:55:68:E7:CA:B2:CC:E9:DA:F6:D4:27:DD:65:AA:01:40:19:89:09:48:80:2D:86

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

funkitalady.com *.funkitalady.com *.cloud.funkitalady.com *.rd.funkitalady.com *.rds.funkitalady.com *.rdweb.funkitalady.com *.remote.funkitalady.com

Other domains in certificate

098efhxy.top *.098efhxy.top *.2dbks.098efhxy.top *.2l6wm.098efhxy.top *.5qutp.098efhxy.top *.5vs9r.098efhxy.top *.b54zj.098efhxy.top *.cc2mm.098efhxy.top *.cxie3.098efhxy.top *.eu3rm.098efhxy.top *.fcvkr.098efhxy.top *.fz4qv.098efhxy.top *.igqlc.098efhxy.top *.j2zfz.098efhxy.top *.kp5po.098efhxy.top *.l0r4m.098efhxy.top *.ndifg.098efhxy.top *.nslow.098efhxy.top *.o7p4x.098efhxy.top *.ootbp.098efhxy.top *.pwb3b.098efhxy.top *.qpuov.098efhxy.top *.uw9i.098efhxy.top *.v3ywp.098efhxy.top *.wakkl.098efhxy.top *.wsct4.098efhxy.top *.y04uw.098efhxy.top *.y9zz2.098efhxy.top *.zruod.098efhxy.top

advanceamplifyymagnet.info *.advanceamplifyymagnet.info *.lje5pk.advanceamplifyymagnet.info

advisory.bot *.advisory.bot *.dev.advisory.bot *.mobile.advisory.bot *.web.advisory.bot

karimbenzemacz.biz *.karimbenzemacz.biz *.ymgal.karimbenzemacz.biz

*.5vs9r.mist-byte.top *.87ab5.mist-byte.top *.95vhx.mist-byte.top *.b5hyr.mist-byte.top *.hgsq5.mist-byte.top *.ks0v9.mist-byte.top *.lkzdx.mist-byte.top mist-byte.top *.mist-byte.top *.qakt3.mist-byte.top *.vhakn.mist-byte.top

*.kayaqq.prestamosrapidos.space *.modalqq.prestamosrapidos.space prestamosrapidos.space *.prestamosrapidos.space

*.cu37nh.processamplifyywave.info processamplifyywave.info *.processamplifyywave.info

*.cn.rajasthan.travel *.com.rajasthan.travel *.hostmaster.rajasthan.travel rajasthan.travel *.rajasthan.travel

*.admin.sparkleentertainment.info *.app.sparkleentertainment.info *.hostmaster.sparkleentertainment.info *.m.sparkleentertainment.info sparkleentertainment.info *.sparkleentertainment.info

*.ab.speetest.net *.app.speetest.net *.edu.speetest.net *.image.speetest.net *.img02.speetest.net *.lg.speetest.net *.puma.speetest.net *.server.speetest.net speetest.net *.speetest.net *.t3.speetest.net *.ws1.speetest.net *.ww1.speetest.net *.www.speetest.net