SSL Certificate Analysis for p.izbor.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=sunshineblackcolor.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 05, 2026

Valid Until

May 06, 2026 77 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

80:3C:2C:2F:D5:4E:CB:34:6F:71:E6:4B:15:F8:13:9F:CC:A2:17:42:72:FC:E6:73:48:61:52:A6:13:05:0A:22

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

izbor.com *.izbor.com *.p.izbor.com *.ww25.izbor.com

Other domains in certificate

forceline.com *.forceline.com *.ind.forceline.com *.mail.forceline.com *.protheus.forceline.com

*.be.healthhuman.net *.bit.healthhuman.net *.boduk.healthhuman.net *.cema.healthhuman.net *.client.healthhuman.net *.cocaw.healthhuman.net *.dacu.healthhuman.net *.fa.healthhuman.net *.faran.healthhuman.net *.fati.healthhuman.net *.fofen.healthhuman.net *.fuho.healthhuman.net *.gefe.healthhuman.net *.gej.healthhuman.net *.gi.healthhuman.net *.goleb.healthhuman.net *.gum.healthhuman.net *.guneq.healthhuman.net healthhuman.net *.healthhuman.net *.hi.healthhuman.net *.hif.healthhuman.net *.hoq.healthhuman.net *.huke.healthhuman.net *.hupa.healthhuman.net *.jat.healthhuman.net *.jaxaw.healthhuman.net *.jed.healthhuman.net *.minok.healthhuman.net *.misor.healthhuman.net *.na.healthhuman.net *.ne.healthhuman.net *.no.healthhuman.net *.peda.healthhuman.net *.pejo.healthhuman.net *.qap.healthhuman.net *.qenef.healthhuman.net *.qihu.healthhuman.net *.qito.healthhuman.net *.qoq.healthhuman.net *.remote2019.healthhuman.net *.rugo.healthhuman.net *.sa.healthhuman.net *.springboot.healthhuman.net *.suk.healthhuman.net *.taru.healthhuman.net *.te.healthhuman.net *.ti.healthhuman.net *.tis.healthhuman.net *.va.healthhuman.net *.vip.healthhuman.net *.wib.healthhuman.net *.wific.healthhuman.net *.witaj.healthhuman.net *.wob.healthhuman.net

*.backup.honglam.com *.beta.honglam.com *.blog.honglam.com *.contact.honglam.com *.help.honglam.com honglam.com *.honglam.com *.random.honglam.com *.sslvpn.honglam.com *.support.honglam.com *.ww25.honglam.com

humandiseases.com *.humandiseases.com *.random.humandiseases.com

*.0.sunshineblackcolor.com *.1.sunshineblackcolor.com *.random.sunshineblackcolor.com sunshineblackcolor.com *.sunshineblackcolor.com

*.cpanel.taxplexity.com *.oyexrbeta.taxplexity.com *.p.taxplexity.com taxplexity.com *.taxplexity.com