SSL Certificate Analysis for streamingkiste.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=77777aaaaaa.co

Issuer

C=US, O=Let's Encrypt, CN=YR1

Valid From

June 10, 2026

Valid Until

September 08, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

94:5E:C9:5D:01:5B:9F:9C:06:D4:EC:26:7E:BD:C9:82:E1:A9:9C:24:C1:7E:68:08:DF:CA:01:EF:77:93:CE:2E

Alternative Names

87 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains

streamingkiste.com *.streamingkiste.com

Other domains in certificate

77777aaaaaa.co *.77777aaaaaa.co *.com.77777aaaaaa.co

ability.codes *.ability.codes *.admin.ability.codes *.app.ability.codes *.members.ability.codes *.test.ability.codes

*.21df95bb9-f05c-4042-888e-e0d7e2782591.aj-vigorpg.co aj-vigorpg.co *.aj-vigorpg.co

*.accounts.centumworld.com *.api.centumworld.com *.app.centumworld.com centumworld.com *.centumworld.com *.chat-api.centumworld.com *.dapp.centumworld.com *.docs.centumworld.com *.plus.centumworld.com *.saas.centumworld.com *.storage.centumworld.com *.token.centumworld.com

*.9884015f-e0f8-4eb3-bd00-8c347a487a28.cogens.art *.api.cogens.art *.app.cogens.art *.assets.cogens.art *.b4267e95-163e-4345-a055-c71268b6b340.cogens.art cogens.art *.cogens.art *.demo.cogens.art *.dev.cogens.art

contortionists.com.au *.contortionists.com.au *.ww25.contortionists.com.au

*.cpanel.digitalfast.info digitalfast.info *.digitalfast.info *.ww38.digitalfast.info

*.api.falcon-broadband.com *.billing.falcon-broadband.com falcon-broadband.com *.falcon-broadband.com

*.dc-07114d466be8.filmkino.pro filmkino.pro *.filmkino.pro

*.basicpaylinev2slot.ludexarimvop.click ludexarimvop.click *.ludexarimvop.click

*.app.moleslot77.org *.demo.moleslot77.org moleslot77.org *.moleslot77.org

*.32.pajqkipubzwe.com pajqkipubzwe.com *.pajqkipubzwe.com

restobuilder.com *.restobuilder.com *.xqsuy.restobuilder.com

*.lyzze.rhfzzx04.cn *.plvtr.rhfzzx04.cn *.qopr.rhfzzx04.cn rhfzzx04.cn *.rhfzzx04.cn *.rrjja.rhfzzx04.cn *.uwyeo.rhfzzx04.cn

*.comune.silver.com.au *.eayzbxhi.silver.com.au *.epboxums.silver.com.au *.ida.silver.com.au *.ihwggtel.silver.com.au *.magnolia.silver.com.au *.mail.silver.com.au *.mx.silver.com.au *.oracdecor.silver.com.au silver.com.au *.silver.com.au *.xbrgvuyl.silver.com.au *.zprpkikg.silver.com.au

ttqdh.loan *.ttqdh.loan

*.mail.welovecatsdogs.com welovecatsdogs.com *.welovecatsdogs.com