SSL Certificate Analysis for hostmaster.phoenixpos.com - Security Grade & TLS Configuration

Open Cached · 1h ago

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=1gocasino-101.win

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

March 20, 2026

Valid Until

June 18, 2026 50 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A4:CB:54:01:5D:9D:44:33:60:67:31:B8:D7:61:72:EA:97:FE:0B:CD:0E:ED:9C:EC:2C:A5:EC:AF:84:A3:9C:2F

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

phoenixpos.com *.phoenixpos.com

Other domains in certificate

077.cam *.077.cam *.docs.077.cam

15027.my *.15027.my

15078.my *.15078.my

1gocasino-101.win *.1gocasino-101.win

27586.icu *.27586.icu

477823.wtf *.477823.wtf

4donate.com *.4donate.com

62742.qpon *.62742.qpon

77742.qpon *.77742.qpon

806568.vip *.806568.vip

83579.icu *.83579.icu

acceler8business.com *.acceler8business.com

arboretum-huelgoat.com *.arboretum-huelgoat.com

aspiringteachers.org *.aspiringteachers.org

betprizes.quest *.betprizes.quest

bhtnr.gmbh *.bhtnr.gmbh

bn7.top *.bn7.top

brandmadeacademy.com *.brandmadeacademy.com

breckenridgedental.com *.breckenridgedental.com

*.647ef8d7-243a-4664-a2c1-4e5aad8a21ce.bubet.tax bubet.tax *.bubet.tax

dvsuthr9slbkaji.top *.dvsuthr9slbkaji.top

dwcrw.us *.dwcrw.us

easy-lifts.com.au *.easy-lifts.com.au

ebisu-snoring-781170436.click *.ebisu-snoring-781170436.click

eblockchain.xyz *.eblockchain.xyz

egadtry.com *.egadtry.com

eh2ubsi.cyou *.eh2ubsi.cyou

goldeneupfinanze.com *.goldeneupfinanze.com

grannyapk.com *.grannyapk.com

*.cuqrdolx-uz.greennoise.blog greennoise.blog *.greennoise.blog

guitar.support *.guitar.support

habitainvestment.com *.habitainvestment.com

hartloanadvisory.com *.hartloanadvisory.com

hasot.com *.hasot.com

hawaiiy.com *.hawaiiy.com

highstakesluck.quest *.highstakesluck.quest

lucktable.quest *.lucktable.quest

pol88rtplive.xyz *.pol88rtplive.xyz

scratchcardhighroller.quest *.scratchcardhighroller.quest

voltaslrpower.com *.voltaslrpower.com

voltasolrpwr.com *.voltasolrpwr.com

yachtpropulsion.com *.yachtpropulsion.com