SSL Certificate Analysis for m.foolproof.in - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=urunity.sbs

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 24, 2026

Valid Until

August 22, 2026 66 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BF:42:E6:FB:AD:0C:35:53:70:F4:41:A2:08:91:87:FC:EF:73:95:49:5B:83:16:D6:A6:C0:EB:78:BF:F3:FC:F5

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

foolproof.in *.foolproof.in

Other domains in certificate

11469.pro *.11469.pro

34140.pro *.34140.pro

37168.my *.37168.my

53860.pro *.53860.pro

835581.cc *.835581.cc

boldvision.club *.boldvision.club *.gestora03x.boldvision.club

campfirex.com *.campfirex.com

gossipgift.xyz *.gossipgift.xyz

haobo27.com *.haobo27.com

*.comune.indila.live indila.live *.indila.live *.ww25.indila.live

innerupwealth.org *.innerupwealth.org

insightfitzone.club *.insightfitzone.club

lfge52.xyz *.lfge52.xyz *.rjolmu1mj2.lfge52.xyz *.rustore.lfge52.xyz

lx10000.com *.lx10000.com

*.citrix.mjpru.com *.csit.mjpru.com *.exam.mjpru.com *.https.mjpru.com mjpru.com *.mjpru.com *.ww8.mjpru.com

myhealthinsurance.co *.myhealthinsurance.co

runze.asia *.runze.asia

*.mail.smurfsgames.info smurfsgames.info *.smurfsgames.info *.webmail.smurfsgames.info

syrudi.pro *.syrudi.pro

*.prod.urunity.sbs *.uat.urunity.sbs urunity.sbs *.urunity.sbs

vgdyo.vip *.vgdyo.vip

*.mx.wesmanga.info wesmanga.info *.wesmanga.info *.ww25.wesmanga.info

xn--95q524cgpt.com *.xn--95q524cgpt.com

y32e.cyou *.y32e.cyou

*.bi.yori.it *.branches.yori.it *.correo.yori.it *.cpanel.yori.it *.email.yori.it *.exchange.yori.it *.hostmaster.yori.it *.local.yori.it *.locations.yori.it *.mail.yori.it *.mail3.yori.it *.mx.yori.it *.owa.yori.it *.pop.yori.it *.rds.yori.it *.remote.yori.it *.stores.yori.it *.webdisk.yori.it *.webmail.yori.it *.whm.yori.it *.www.yori.it yori.it *.yori.it