SSL Certificate Analysis for services.indiangirl.pro - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=172767.blog

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 03, 2026

Valid Until

August 01, 2026 72 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

65:4C:E3:4F:0A:D6:87:49:F4:DB:96:DC:DD:F2:94:97:E1:CB:A8:01:E4:EB:D9:5B:F1:C3:9B:82:52:37:C0:88

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

indiangirl.pro *.indiangirl.pro

Other domains in certificate

172767.blog *.172767.blog

63464.blog *.63464.blog

77455.computer *.77455.computer

778974.vip *.778974.vip

99031.my *.99031.my

cima-inversiones.info *.cima-inversiones.info

clejy.gdn *.clejy.gdn

*.autodiscover.cortecostura.com cortecostura.com *.cortecostura.com *.cpanel.cortecostura.com *.mail.cortecostura.com *.webdisk.cortecostura.com *.webmail.cortecostura.com *.ww25.cortecostura.com *.ww38.cortecostura.com

cyber-pulsebeam.quest *.cyber-pulsebeam.quest

cyber-quantumport.xyz *.cyber-quantumport.xyz

edugovtjob.com *.edugovtjob.com

ementor.academy *.ementor.academy

fpeh6qebzm.top *.fpeh6qebzm.top

fraon.gdn *.fraon.gdn

freshegghk.vip *.freshegghk.vip

ganim2018.com *.ganim2018.com

gxnzc.cc *.gxnzc.cc

hakeem.live *.hakeem.live

hhcmz.com *.hhcmz.com

hpcdk.partners *.hpcdk.partners

huangtao0503.top *.huangtao0503.top

ijlsiu.auction *.ijlsiu.auction

jebpl.gdn *.jebpl.gdn

ku3933.me *.ku3933.me

moroccanglamour.com *.moroccanglamour.com

omlfa.gdn *.omlfa.gdn

pukul69q.xyz *.pukul69q.xyz

qgtb054.cc *.qgtb054.cc

radiationbra.com *.radiationbra.com

realmvision20.shop *.realmvision20.shop

rejwrdph.xyz *.rejwrdph.xyz

rs60173.cc *.rs60173.cc

sdtg01.net *.sdtg01.net

senna.in *.senna.in

slavesvote.com *.slavesvote.com

stickwarlegacymodapk.app *.stickwarlegacymodapk.app

taihetong.com *.taihetong.com

thelonecypress.com *.thelonecypress.com

udrpinsight.com *.udrpinsight.com

verticalstadium.com *.verticalstadium.com