SSL Certificate Analysis for plexivarn.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=phonesfold.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 01, 2026

Valid Until

July 30, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2F:8F:D6:0A:01:E6:D9:2E:64:2E:AC:8E:DA:70:AB:5D:99:B9:12:8A:18:53:3F:95:4D:23:C1:20:E5:6C:B1:63

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

plexivarn.com *.plexivarn.com *.a.plexivarn.com *.admin.plexivarn.com *.mailhost.plexivarn.com *.mx.plexivarn.com *.pay.plexivarn.com *.server1.plexivarn.com *.web.plexivarn.com *.www1.plexivarn.com

Other domains in certificate

borrowmychildren.com *.borrowmychildren.com *.ww25.borrowmychildren.com

cjgp.org *.cjgp.org *.gplr0.cjgp.org *.hnqzi.cjgp.org

cocola.live *.cocola.live

croftheatingandair.com *.croftheatingandair.com *.pay.croftheatingandair.com

datemaryfuck.me *.datemaryfuck.me *.demo.datemaryfuck.me

electrictruck.xyz *.electrictruck.xyz

fusiongamingzone.com *.fusiongamingzone.com *.www.fusiongamingzone.com

guffmusic.com *.guffmusic.com *.mail.guffmusic.com

jadybrae.com *.jadybrae.com *.m.jadybrae.com *.random.jadybrae.com *.sitemaps.jadybrae.com

*.adfs.offsetalpine.com.au *.autodiscover.offsetalpine.com.au *.citrix.offsetalpine.com.au *.mail.offsetalpine.com.au *.mobile.offsetalpine.com.au offsetalpine.com.au *.offsetalpine.com.au *.sharefile.offsetalpine.com.au

phonesfold.com *.phonesfold.com *.remote.phonesfold.com *.vpn.phonesfold.com *.wwww.phonesfold.com

*.admin.probability.it *.backend.probability.it *.dev.probability.it *.hostmaster.probability.it probability.it *.probability.it *.remote.probability.it *.staging.probability.it

*.a.shararehsophia.info *.api.shararehsophia.info *.backup.shararehsophia.info shararehsophia.info *.shararehsophia.info *.staging.shararehsophia.info *.www.shararehsophia.info

*.analytics.sirasa.it *.analyze.sirasa.it *.api.sirasa.it *.app.sirasa.it *.backend.sirasa.it *.board.sirasa.it *.dashboards.sirasa.it *.demo.sirasa.it *.forecast.sirasa.it *.hostmaster.sirasa.it *.internal.sirasa.it *.mail.sirasa.it *.report.sirasa.it sirasa.it *.sirasa.it *.supersets.sirasa.it *.www.sirasa.it

*.a.synnetworkclash.com synnetworkclash.com *.synnetworkclash.com

*.com.ultramarts.com ultramarts.com *.ultramarts.com