SSL Certificate Analysis for rdweb.mycairn.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=wkassa.io

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 05, 2026

Valid Until

May 06, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

31:FB:9A:F6:F1:3F:D1:F0:51:29:49:CE:11:08:08:68:E1:F5:AD:2C:A7:B2:A1:24:6A:2B:95:A3:53:5D:55:06

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

mycairn.com *.mycairn.com *.vpn2.mycairn.com

Other domains in certificate

*.22565.4042509.top 4042509.top *.4042509.top *.dd.4042509.top *.xn--4042505101-404xavcom-5b55at539ig7c.4042509.top

817t.com *.817t.com *.ww25.817t.com

arkhhubz.click *.arkhhubz.click *.tranet.arkhhubz.click

bernabe.com *.bernabe.com *.ciscovpn.bernabe.com *.daan.bernabe.com

gde.com.pl *.gde.com.pl

*.25.cosasdemujeres.com cosasdemujeres.com *.cosasdemujeres.com *.edu.cosasdemujeres.com *.laravel.cosasdemujeres.com *.m.cosasdemujeres.com *.partner.cosasdemujeres.com *.rustore.cosasdemujeres.com *.school.cosasdemujeres.com *.sitemaps.cosasdemujeres.com *.webmail.cosasdemujeres.com *.ww.cosasdemujeres.com *.ww25.cosasdemujeres.com

*.admin.eurostreaming.life *.admission.eurostreaming.life eurostreaming.life *.eurostreaming.life *.saas.eurostreaming.life

goodens.com *.goodens.com *.ww1.goodens.com

*.183062023.heertis.click heertis.click *.heertis.click *.pdfxnacxzx.heertis.click *.random.heertis.click *.uttgsoaydp.heertis.click

islandtravelparadise.live *.islandtravelparadise.live

lidihotel.com *.lidihotel.com *.qa.lidihotel.com *.stat.lidihotel.com

onlynewcustomers.com *.onlynewcustomers.com *.ww16.onlynewcustomers.com *.ww17.onlynewcustomers.com *.ww38.onlynewcustomers.com

*.access.sheherazade.com sheherazade.com *.sheherazade.com *.sslvpn.sheherazade.com *.ww17.sheherazade.com

*.cpcontacts.u15.tokyo *.ftp.u15.tokyo u15.tokyo *.u15.tokyo *.ww3.u15.tokyo

*.crm.unclaimedtexas.org unclaimedtexas.org *.unclaimedtexas.org

uvwwk5w5ub.xyz *.uvwwk5w5ub.xyz *.ww25.uvwwk5w5ub.xyz *.ww38.uvwwk5w5ub.xyz

*.adrianasally.vuyiop.xyz *.ci.vuyiop.xyz *.daniellemarlena.vuyiop.xyz *.katelintammy.vuyiop.xyz vuyiop.xyz *.vuyiop.xyz *.ww25.vuyiop.xyz *.ww38.vuyiop.xyz

wjcasino.mobi *.wjcasino.mobi *.ww38.wjcasino.mobi

wkassa.io *.wkassa.io *.ww38.wkassa.io