SSL Certificate Analysis for random.lasbodegas.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=apuntsdecuina.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 18, 2026

Valid Until

May 19, 2026 85 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

27:57:8E:C5:D9:BA:0F:E5:87:55:A0:49:77:19:8D:69:59:E1:6C:2D:4C:4E:1A:17:E0:DC:8D:BC:69:EF:65:C0

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

lasbodegas.com *.lasbodegas.com *.random.lasbodegas.com

Other domains in certificate

apuntsdecuina.com *.apuntsdecuina.com *.random.apuntsdecuina.com

*.aviada.galerieacdc.com galerieacdc.com *.galerieacdc.com

*.hostmaster.iim-museum.com iim-museum.com *.iim-museum.com *.www.iim-museum.com

*.3dc63bdc-b90f-42ff-aec1-b935c3bf7ad8.kaki777.pics *.4c82e8fd-b7af-48c8-9c90-3aef6edceef7.kaki777.pics *.ad.kaki777.pics *.adblock.kaki777.pics *.adg.kaki777.pics *.adguard.kaki777.pics *.adguard01.kaki777.pics *.admin.kaki777.pics *.agh.kaki777.pics *.api.kaki777.pics *.assets.kaki777.pics *.beta.kaki777.pics *.demo.kaki777.pics *.doh1.kaki777.pics *.evolution.kaki777.pics *.gcpkxraijagestion.kaki777.pics *.gestion.kaki777.pics kaki777.pics *.kaki777.pics *.members.kaki777.pics *.new.kaki777.pics *.novo.kaki777.pics *.ns.kaki777.pics *.portal.kaki777.pics *.remote.kaki777.pics *.resolver.kaki777.pics *.rgwyjportal.kaki777.pics *.shop.kaki777.pics *.staging.kaki777.pics *.store.kaki777.pics *.test.kaki777.pics *.tlpxprgwyjportal.kaki777.pics *.uat.kaki777.pics *.www.kaki777.pics *.zqaoagcpkxraijagestion.kaki777.pics

*.086d9489-4c8a-4af1-869b-9d5d2cbe4bcb.pleystore.com *.api.pleystore.com *.app.pleystore.com *.apps.pleystore.com *.backup.pleystore.com *.beta.pleystore.com *.blog.pleystore.com *.cpanel.pleystore.com *.crm.pleystore.com *.demo.pleystore.com *.dev.pleystore.com *.forum.pleystore.com *.forums.pleystore.com *.google.pleystore.com *.help.pleystore.com *.home.pleystore.com *.hostmaster.pleystore.com *.localhost.pleystore.com *.m.pleystore.com *.mi.pleystore.com *.mobile.pleystore.com *.new.pleystore.com *.news.pleystore.com *.old.pleystore.com pleystore.com *.pleystore.com *.pop.pleystore.com *.remote.pleystore.com *.shop.pleystore.com *.store.pleystore.com *.temp.pleystore.com *.test.pleystore.com *.vpn.pleystore.com *.wap.pleystore.com *.web.pleystore.com *.wiki.pleystore.com *.ww.pleystore.com *.www.pleystore.com

*.autodiscover.thesavannahstory.com thesavannahstory.com *.thesavannahstory.com