SSL Certificate Analysis for lecooking.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=hwiieod.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 25, 2026

Valid Until

May 26, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2C:12:28:73:00:A0:18:0A:71:27:1D:BF:43:9A:88:F9:87:11:D6:74:FD:34:4F:F2:80:B4:8E:9D:8E:4C:FA:D6

Alternative Names

76 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

76 domains

lecooking.com *.lecooking.com *.webdisk.lecooking.com

Other domains in certificate

becketthotel.co.uk *.becketthotel.co.uk *.ww25.becketthotel.co.uk

celebbait.com *.celebbait.com

eee.au *.eee.au *.sana.eee.au

fourdayworkweek.io *.fourdayworkweek.io *.ww38.fourdayworkweek.io

gbjqvwlktxzpmjr.xyz *.gbjqvwlktxzpmjr.xyz *.ww25.gbjqvwlktxzpmjr.xyz

*.blog.gonnect.io gonnect.io *.gonnect.io

*.analytics.howardstorage.com.au howardstorage.com.au *.howardstorage.com.au *.old.howardstorage.com.au *.ww38.howardstorage.com.au

hwiieod.com *.hwiieod.com *.m17.hwiieod.com

kscvisit.com *.kscvisit.com

mapmakers.com.au *.mapmakers.com.au

*.files.mp3000.net *.flavio.mp3000.net mp3000.net *.mp3000.net

nacionplay.com *.nacionplay.com

newportdailyexpress.com *.newportdailyexpress.com *.ww38.newportdailyexpress.com

removalistsipswich.au *.removalistsipswich.au

*.analytics2-beta.shellsockers.io *.controller-insight.shellsockers.io *.dashboard.shellsockers.io *.data-viz.shellsockers.io *.demo-superset.shellsockers.io *.external.shellsockers.io *.gateway-vis.shellsockers.io *.portal.shellsockers.io *.preprod.shellsockers.io shellsockers.io *.shellsockers.io *.staging.shellsockers.io *.sup.shellsockers.io *.viz.shellsockers.io *.ww16.shellsockers.io *.ww25.shellsockers.io

thegreyhoundatcromford.co.uk *.thegreyhoundatcromford.co.uk *.ww25.thegreyhoundatcromford.co.uk

ub-kino.site *.ub-kino.site *.ww16.ub-kino.site

universalmedia.com.au *.universalmedia.com.au *.ww25.universalmedia.com.au *.ww38.universalmedia.com.au

wellspansaving.com *.wellspansaving.com

*.vpxjkanalyze.www-ben.bet *.wildcard.www-ben.bet www-ben.bet *.www-ben.bet *.www.www-ben.bet