SSL Certificate Analysis for gate.himmler.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=startupscoin.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 09, 2026

Valid Until

May 10, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

DE:31:2F:53:2D:27:1B:68:60:58:BB:48:95:B0:E9:62:BA:AD:64:2A:77:45:4B:58:94:43:4E:80:42:AA:8F:42

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

himmler.com *.himmler.com *.api.himmler.com *.cisco.himmler.com *.cpanel.himmler.com *.drvpn.himmler.com *.ebay.himmler.com *.firewall.himmler.com *.gate.himmler.com *.mail.himmler.com *.owa.himmler.com *.portal.himmler.com *.ra.himmler.com *.ravpn.himmler.com *.relay.himmler.com *.remote.himmler.com *.sitemaps.himmler.com *.ssl.himmler.com *.sslvpn.himmler.com *.test.himmler.com *.vpn.himmler.com *.webdisk.himmler.com *.ww1.himmler.com

Other domains in certificate

*.admin.bestwirelessnetwork.com bestwirelessnetwork.com *.bestwirelessnetwork.com

*.admin.bijilive.org bijilive.org *.bijilive.org

*.api.come77bet.vip come77bet.vip *.come77bet.vip *.forums.come77bet.vip *.metrics.come77bet.vip *.portal.come77bet.vip *.sber.come77bet.vip *.shop.come77bet.vip *.sst.come77bet.vip *.store.come77bet.vip *.test.come77bet.vip *.vip.come77bet.vip

*.cpcontacts.doctoradipediatra.com doctoradipediatra.com *.doctoradipediatra.com *.webmail.doctoradipediatra.com *.www.doctoradipediatra.com

*.api.hanenosuke.com hanenosuke.com *.hanenosuke.com

*.adblock.king69.club *.demo.king69.club king69.club *.king69.club *.ldcardsubdomaintoprocess.king69.club *.mail.king69.club *.stg.king69.club *.tdxfmtest.king69.club *.uat.king69.club

*.hostmaster.maamo.com *.m.maamo.com maamo.com *.maamo.com *.sxxxx.maamo.com *.wiki.maamo.com *.ww11.maamo.com *.zw.maamo.com

*.api.mangyou.com *.autodiscover.mangyou.com *.ftp.mangyou.com *.hostmaster.mangyou.com *.m.mangyou.com *.mail.mangyou.com mangyou.com *.mangyou.com *.materiais.mangyou.com *.ssl.mangyou.com *.vpnssl.mangyou.com

*.m.startupscoin.com startupscoin.com *.startupscoin.com *.www.startupscoin.com

*.bamboo.txtrailers.com *.dcad888a-4991-4358-9f6e-c6bdf60b35b5.txtrailers.com *.m.txtrailers.com *.mx.txtrailers.com *.sitemaps.txtrailers.com txtrailers.com *.txtrailers.com