SSL Certificate Analysis for runsmail.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=360razor.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 26, 2026

Valid Until

August 24, 2026 64 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

0F:57:EF:CF:43:E1:77:96:64:BD:6C:A9:27:3B:3E:E9:9B:92:D8:00:70:41:F8:CB:5D:44:64:24:46:36:BC:D8

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

runsmail.com *.runsmail.com

Other domains in certificate

360razor.com *.360razor.com

36484.sbs *.36484.sbs

704358.co *.704358.co

808325.com *.808325.com

beecine.org *.beecine.org

bnz-secureapp.com *.bnz-secureapp.com

cardwallets.com.au *.cardwallets.com.au

cheatfreegame.com *.cheatfreegame.com

datagame.xyz *.datagame.xyz

deashlane.com *.deashlane.com

e95q.cyou *.e95q.cyou

ercockremarke.org *.ercockremarke.org

esportclass.com *.esportclass.com

eye-infection-treatment-98064.com *.eye-infection-treatment-98064.com

gamblequest.quest *.gamblequest.quest

gkgwy.gdn *.gkgwy.gdn

goldensunhoteldn.com *.goldensunhoteldn.com

grokcampus.com *.grokcampus.com

juliettedate.com *.juliettedate.com

ketoprobiotix-eu.bio *.ketoprobiotix-eu.bio

kittanswap.cam *.kittanswap.cam

koymn.gdn *.koymn.gdn

kylietucker.com *.kylietucker.com

lottochamp-en-us.com *.lottochamp-en-us.com

luxuryhotels.lol *.luxuryhotels.lol

marketbit.org *.marketbit.org

marquisjet-cards.com *.marquisjet-cards.com

max77.bet *.max77.bet

meritking1836.com *.meritking1836.com

moswatch.com *.moswatch.com

movietowatch.xyz *.movietowatch.xyz

netlayer-nfr.info *.netlayer-nfr.info

nftworld.click *.nftworld.click

onbulbs.com *.onbulbs.com

oxbridgeinternational.com *.oxbridgeinternational.com

peaceandcompassion.org *.peaceandcompassion.org

pptsync.com *.pptsync.com

psilocybinstudies.com *.psilocybinstudies.com

purn.pro *.purn.pro

resettoreign.com *.resettoreign.com

sban.org *.sban.org

seamlessweddings.beauty *.seamlessweddings.beauty

sexarabe.sbs *.sexarabe.sbs

sjkp1046.sbs *.sjkp1046.sbs