SSL Certificate Analysis for hypergo.cfd - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=hymeneals.org

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 06, 2026

Valid Until

May 07, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A2:DC:C7:E9:F8:25:78:15:3E:D7:4A:F0:5B:EB:C9:5C:73:A6:00:C2:49:97:BA:CD:22:1D:4A:95:14:80:78:81

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

hypergo.cfd *.hypergo.cfd *.20-gaming-chair.hypergo.cfd *.age-requirement-at-gamestop.hypergo.cfd *.best-maps-for-survivors-dbd.hypergo.cfd *.pdf-xchange-druckeinstellungen.hypergo.cfd *.texas-mid-bank.hypergo.cfd *.the-hoover-dam-readworks-answer-key.hypergo.cfd *.time-3-boruto.hypergo.cfd

Other domains in certificate

*.755f1ce8-4160-4d13-98a2-e01e41ce0e22.cashback.au *.app.cashback.au cashback.au *.cashback.au *.codenterprise.cashback.au *.demo.cashback.au *.docs.cashback.au *.izpeoqva.cashback.au *.test.cashback.au *.webcodenterprise.cashback.au *.www.cashback.au

*.blog.elahamd.com elahamd.com *.elahamd.com *.wiki.elahamd.com

*.explorer.hb2012.com hb2012.com *.hb2012.com *.hwar5ujk4b1iddyz.hb2012.com

*.6e2d8e55-3437-45cd-93f2-6bcf8ac12cd1.hymeneals.org *.dashboard.hymeneals.org *.f75e65fd-7333-40b1-99ff-ff25a447f4d6.hymeneals.org hymeneals.org *.hymeneals.org *.mailer.hymeneals.org *.qlojztest.hymeneals.org *.staging.hymeneals.org *.test.hymeneals.org *.web.hymeneals.org *.zpdiywsb.hymeneals.org

*.comms.mei.com.au *.couda.mei.com.au *.crypto.mei.com.au *.elearning.mei.com.au *.enet.mei.com.au *.enetgroup.mei.com.au *.gareth.mei.com.au *.group.mei.com.au *.helix.mei.com.au *.helix3.mei.com.au *.helixii.mei.com.au *.helixiii.mei.com.au *.helixu.mei.com.au *.helixultimate.mei.com.au *.krom.mei.com.au mei.com.au *.mei.com.au *.mei.mei.com.au *.ptr7513.mei.com.au *.savea.mei.com.au *.savea1.mei.com.au *.sybix.mei.com.au *.test.mei.com.au *.upload.mei.com.au *.xeon.mei.com.au

mlearnzzz.xyz *.mlearnzzz.xyz *.x7pal.mlearnzzz.xyz

*.dashboard.negoziazioni.com negoziazioni.com *.negoziazioni.com

nveof.pro *.nveof.pro

nwiup.pro *.nwiup.pro

odiacalendar.org *.odiacalendar.org

oneworldonemusic.com *.oneworldonemusic.com

*.site.spikier.com spikier.com *.spikier.com *.wiki.spikier.com *.wildcard.spikier.com *.www.spikier.com

*.remote.stonegamer.com stonegamer.com *.stonegamer.com *.vpn.stonegamer.com *.wildcard.stonegamer.com *.www.stonegamer.com