SSL Certificate Analysis for gabes.studio - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=funpics.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 24, 2026

Valid Until

July 23, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

1E:15:45:A2:3C:F2:7E:3B:BA:FC:B9:F8:06:A1:72:33:06:B8:D0:C5:72:12:83:A6:21:29:75:80:66:7C:FB:C2

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

gabes.studio *.gabes.studio

Other domains in certificate

0p5.cc *.0p5.cc *.api.0p5.cc *.random.0p5.cc *.staging.0p5.cc

bankloan.au *.bankloan.au

*.0cadb1587815.cricfytv.co cricfytv.co *.cricfytv.co

*.admin.desarrollo.it *.api.desarrollo.it *.app.desarrollo.it *.backend.desarrollo.it *.demo.desarrollo.it desarrollo.it *.desarrollo.it *.dev.desarrollo.it *.hostmaster.desarrollo.it *.report.desarrollo.it *.stats.desarrollo.it *.su.desarrollo.it *.visual.desarrollo.it

desktoppin.com *.desktoppin.com

*.amp.enterfyxerpower.info enterfyxerpower.info *.enterfyxerpower.info

funpics.it *.funpics.it *.owa.funpics.it

*.cdn.futemax.vip futemax.vip *.futemax.vip *.ww25.futemax.vip

haoqcw.com *.haoqcw.com *.pfj.haoqcw.com

*.admin.heno.it *.analytic.heno.it *.api.heno.it *.backend.heno.it *.chart.heno.it *.dash.heno.it *.dashboard.heno.it *.dashboards.heno.it *.data.heno.it *.demo.heno.it *.dev.heno.it heno.it *.heno.it *.hostmaster.heno.it *.metric.heno.it *.staging.heno.it *.supersets.heno.it

investingmontenegro.me *.investingmontenegro.me *.sitemaps.investingmontenegro.me *.ww38.investingmontenegro.me

jadebet.bet *.jadebet.bet

jobexpo.au *.jobexpo.au

money-easilfpv.buzz *.money-easilfpv.buzz

skeetcheat.cc *.skeetcheat.cc *.ww25.skeetcheat.cc

*.aiqi.sstuvw.xyz sstuvw.xyz *.sstuvw.xyz

*.hostmaster.thefield.it thefield.it *.thefield.it

*.sitemaps.thewoodshedder.com *.smtp.thewoodshedder.com thewoodshedder.com *.thewoodshedder.com

*.sitemap.travelfundraisers.org *.sitemaps.travelfundraisers.org travelfundraisers.org *.travelfundraisers.org

wookafr.click *.wookafr.click *.wp.wookafr.click

*.hostmaster.xn--tauschbrsen-xfb.de xn--tauschbrsen-xfb.de *.xn--tauschbrsen-xfb.de