SSL Certificate Analysis for speedtest.wapweb.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=khboxhd.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 15, 2026

Valid Until

April 15, 2026 56 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D6:73:26:73:D3:FF:26:43:77:58:F0:9A:1C:A5:96:C2:45:6A:C4:73:B6:89:FB:63:26:30:75:63:3A:C2:A1:C0

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

wapweb.com *.wapweb.com *.ffffffffffff.wapweb.com *.service.wapweb.com *.speedtest.wapweb.com *.wi.wapweb.com *.ww17.wapweb.com *.ww38.wapweb.com *.www.wapweb.com

Other domains in certificate

appmaking.co *.appmaking.co *.ww25.appmaking.co *.ww38.appmaking.co

bitcoinhistoricalprice.com *.bitcoinhistoricalprice.com *.rss.bitcoinhistoricalprice.com

boafoda.co *.boafoda.co *.bwww.boafoda.co *.wildcard.boafoda.co

btcjamaica.com *.btcjamaica.com *.jenkins.btcjamaica.com *.prueba.btcjamaica.com

btcusbwallet.com *.btcusbwallet.com *.ww16.btcusbwallet.com

buabdullahinvestments.com *.buabdullahinvestments.com *.ww38.buabdullahinvestments.com

bursa.bet *.bursa.bet *.workflow.bursa.bet

danny444.net *.danny444.net

*.blog.itihaas.com *.help.itihaas.com itihaas.com *.itihaas.com *.random.itihaas.com

jfg02.xyz *.jfg02.xyz *.random.jfg02.xyz *.ww25.jfg02.xyz

*.khboxhd.khboxhd.xyz khboxhd.xyz *.khboxhd.xyz *.ww38.khboxhd.xyz *.www.khboxhd.xyz

robertgrace.store *.robertgrace.store

*.a1c90348-1b8f-4fca-9b35-6da5ab77f254.seostrong.info *.cpanel.seostrong.info *.cpcalendars.seostrong.info *.esihghostmaster.seostrong.info *.mail.seostrong.info *.remote.seostrong.info seostrong.info *.seostrong.info *.webdisk.seostrong.info *.ww25.seostrong.info *.ww38.seostrong.info *.www.seostrong.info

*.daily.sil.com.au *.random.sil.com.au sil.com.au *.sil.com.au *.ww38.sil.com.au

*.random.smithandgrant.co.uk smithandgrant.co.uk *.smithandgrant.co.uk *.ww25.smithandgrant.co.uk *.ww38.smithandgrant.co.uk

*.new.sxtobacco.co.uk sxtobacco.co.uk *.sxtobacco.co.uk

*.pay.wayfairoutlets.store wayfairoutlets.store *.wayfairoutlets.store *.ww16.wayfairoutlets.store

*.blog.winbet.org *.sitemap.winbet.org winbet.org *.winbet.org

*.sitemap.ymp.cc *.website.ymp.cc *.www.ymp.cc ymp.cc *.ymp.cc