SSL Certificate Analysis for seriousfish.netsh.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=smbpcs.info

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 14, 2026

Valid Until

April 14, 2026 51 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

1D:F9:E3:AC:35:2A:92:26:30:FF:FB:96:58:EB:64:3A:97:DF:7F:99:81:77:86:E9:24:F7:DA:39:59:24:09:56

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

netsh.net *.netsh.net *.aidscare.netsh.net *.altrock.netsh.net *.czy.netsh.net *.dada.netsh.net *.diyu.netsh.net *.ela.netsh.net *.juris.netsh.net *.peoplesh.netsh.net *.qiuzhiye.netsh.net *.seriousfish.netsh.net *.venfish.netsh.net

Other domains in certificate

*.autoconfig.bosslot77.online bosslot77.online *.bosslot77.online *.cpanel.bosslot77.online *.mail.bosslot77.online *.sitemaps.bosslot77.online *.whm.bosslot77.online *.ww38.bosslot77.online

coffe.today *.coffe.today *.free.coffe.today *.s.coffe.today *.ww38.coffe.today

crossroadford.com *.crossroadford.com *.ww25.crossroadford.com *.ww38.crossroadford.com

find-jobs-01.com *.find-jobs-01.com *.ww25.find-jobs-01.com

hamiklai2.click *.hamiklai2.click *.ww25.hamiklai2.click

jobnotification.org *.jobnotification.org *.ww25.jobnotification.org

*.app.luckycrashgames.com *.kz.luckycrashgames.com luckycrashgames.com *.luckycrashgames.com *.m.luckycrashgames.com *.myx.luckycrashgames.com *.thhb.luckycrashgames.com

*.fa.lupintravel.co lupintravel.co *.lupintravel.co *.ww11.lupintravel.co *.www.lupintravel.co

*.cpanel.mygayhole.com *.cpcalendars.mygayhole.com mygayhole.com *.mygayhole.com

panfu.world *.panfu.world *.ww38.panfu.world

pausbet.org *.pausbet.org *.sitemap.pausbet.org *.www.pausbet.org

*.hfgb.smbpcs.info *.ihab17.smbpcs.info *.mx.smbpcs.info smbpcs.info *.smbpcs.info *.vhbdsufguhiu.smbpcs.info *.ww25.smbpcs.info

swgostyn.pl *.swgostyn.pl *.ww25.swgostyn.pl

uwc.life *.uwc.life *.ww25.uwc.life *.www.uwc.life

*.b0yrhp.vxc5yc.mom *.fvi8l6.vxc5yc.mom *.v3g4l4.vxc5yc.mom vxc5yc.mom *.vxc5yc.mom

*.app.zanutto.com *.desktop.zanutto.com *.insight-global.zanutto.com *.mail9.zanutto.com *.rustore.zanutto.com *.superset3.zanutto.com zanutto.com *.zanutto.com