SSL Certificate Analysis for igour.shop - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=betterthanok.shop

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 06, 2026

Valid Until

August 04, 2026 62 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

57:6F:47:C5:10:FD:B8:FE:58:ED:30:94:7E:82:5A:0A:3C:95:B6:8E:61:54:11:CA:D8:5D:85:22:C2:5D:99:F2

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

igour.shop *.igour.shop

Other domains in certificate

betterthanok.shop *.betterthanok.shop *.ww38.betterthanok.shop

blisslifemag.shop *.blisslifemag.shop *.ww38.blisslifemag.shop

cillaandmaddie.shop *.cillaandmaddie.shop *.ww38.cillaandmaddie.shop

dlatechnology.shop *.dlatechnology.shop

freepoolsk.shop *.freepoolsk.shop

garageanda.shop *.garageanda.shop *.ww38.garageanda.shop

gentleemonstervip.shop *.gentleemonstervip.shop

graco-baby.shop *.graco-baby.shop

greenpowersupps.shop *.greenpowersupps.shop

hapanixx.shop *.hapanixx.shop

homepizza.shop *.homepizza.shop

hump.life *.hump.life

hwlab.shop *.hwlab.shop

inboxnews.shop *.inboxnews.shop

inventorys.shop *.inventorys.shop

joe-biden.shop *.joe-biden.shop

jollygifts.shop *.jollygifts.shop

joyeriasanchez.vip *.joyeriasanchez.vip

jucker.shop *.jucker.shop

khakinkier.shop *.khakinkier.shop

kittybapes.shop *.kittybapes.shop

kommandostore-usa.shop *.kommandostore-usa.shop

kyliecosmeticsdirect.shop *.kyliecosmeticsdirect.shop

lastrack.shop *.lastrack.shop

luov-mall.shop *.luov-mall.shop

lwuehqz.shop *.lwuehqz.shop

mailstamponline.shop *.mailstamponline.shop

mancraft.pro *.mancraft.pro

meetyouhere.shop *.meetyouhere.shop

meowtification.shop *.meowtification.shop

merlins.live *.merlins.live

mokae.shop *.mokae.shop

mypruvit.shop *.mypruvit.shop

nayabeauti.shop *.nayabeauti.shop

reynspooneroffcialdiscount.shop *.reynspooneroffcialdiscount.shop

skeercaci.shop *.skeercaci.shop *.ww38.skeercaci.shop

smokeranchcnc.shop *.smokeranchcnc.shop

snowgrassmerino.shop *.snowgrassmerino.shop

wonderealy.shop *.wonderealy.shop

yourprimehub.shop *.yourprimehub.shop

yvqdpux.shop *.yvqdpux.shop