SSL Certificate Analysis for i5.top - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gasderpote.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 30, 2026

Valid Until

July 29, 2026 57 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2B:CA:FA:C4:D2:34:EA:3B:48:75:1B:2B:09:B3:74:29:52:E5:E0:85:36:50:A8:11:B3:9D:05:09:BC:E5:A3:0F

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

i5.top *.i5.top *.12l.i5.top *.13k.i5.top *.13p.i5.top *.15g.i5.top *.15j.i5.top *.15n.i5.top *.165.i5.top *.16c.i5.top *.16f.i5.top *.17x.i5.top *.17y.i5.top *.189.i5.top *.18g.i5.top *.18t.i5.top *.193.i5.top *.19m.i5.top *.19n.i5.top *.19o.i5.top *.1a1.i5.top *.1ai.i5.top *.1ar.i5.top *.1b3.i5.top *.1bf.i5.top *.1bz.i5.top *.1c1.i5.top *.1cq.i5.top *.1cz.i5.top *.1d0.i5.top *.1dc.i5.top *.1dx.i5.top *.1e0.i5.top *.1er.i5.top *.1es.i5.top *.1f5.i5.top *.1ft.i5.top *.1fw.i5.top *.1fz.i5.top *.1g0.i5.top *.1g1.i5.top *.1ga.i5.top *.1h3.i5.top *.1jq.i5.top *.1jv.i5.top *.1nb.i5.top *.1oa.i5.top *.1oe.i5.top *.1pr.i5.top *.1pu.i5.top *.1py.i5.top *.1q3.i5.top *.d.i5.top *.h5.i5.top *.hogbpvideo-cloudcontrol.i5.top *.izrxk16c.i5.top *.nqjog174.i5.top *.vgvop1dx.i5.top *.whegun.i5.top *.y.i5.top

Other domains in certificate

228486.one *.228486.one *.one.228486.one

*.admin.coldlaabs.com coldlaabs.com *.coldlaabs.com *.kbmpooffice.coldlaabs.com

gasderpote.com *.gasderpote.com *.random.gasderpote.com

*.boss.laser-level.shop laser-level.shop *.laser-level.shop *.smtp.laser-level.shop *.ww25.laser-level.shop

*.app.trafficbroker.biz *.jeggk2.trafficbroker.biz *.members.trafficbroker.biz trafficbroker.biz *.trafficbroker.biz

*.216cz.xn--omsz6l.com *.ndom.xn--omsz6l.com *.sanwang.xn--omsz6l.com *.sitemap.xn--omsz6l.com *.swdaoh.xn--omsz6l.com *.vpn.xn--omsz6l.com xn--omsz6l.com *.xn--omsz6l.com