SSL Certificate Analysis for termslist.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=tufuna.tech

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 22, 2026

Valid Until

July 21, 2026 44 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

61:DD:2A:56:2D:6B:B5:82:CC:A3:D5:16:A5:85:9C:72:7C:F4:93:DC:9D:70:EC:6D:C4:69:95:40:E2:E2:B1:E0

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

termslist.com *.termslist.com *.free-ipod-tattoos.termslist.com *.godmode.termslist.com *.oyarzunandvanesa-fotos.termslist.com *.sibelcikcom.termslist.com *.vladmodels-photosfree.termslist.com

Other domains in certificate

*.a.barlbearing.info barlbearing.info *.barlbearing.info

bkpw.com *.bkpw.com *.cox-among.bkpw.com *.mcj.bkpw.com

bloemendevalk.be *.bloemendevalk.be *.ww25.bloemendevalk.be

buomdep.pro *.buomdep.pro *.www.buomdep.pro

caftan-marocain.store *.caftan-marocain.store *.ww25.caftan-marocain.store

cmnf-enf.com *.cmnf-enf.com *.jenkins.cmnf-enf.com

*.7036b7de-aa37-47aa-875e-531bffb89c98.cvilleevents.info *.a.cvilleevents.info *.assets.cvilleevents.info cvilleevents.info *.cvilleevents.info *.dev.cvilleevents.info

ebinj.online *.ebinj.online *.pay.ebinj.online *.ww16.ebinj.online

eroticlothing.co.uk *.eroticlothing.co.uk *.hostmaster.eroticlothing.co.uk

fthelp.live *.fthelp.live *.random.fthelp.live

*.hostmaster.jjmiracleusa.com jjmiracleusa.com *.jjmiracleusa.com *.www.jjmiracleusa.com

*.cpcalendars.legionforge.com legionforge.com *.legionforge.com *.mail.legionforge.com *.webmail.legionforge.com

liubaika.com *.liubaika.com *.ww25.liubaika.com

lushbeam.co *.lushbeam.co *.ww17.lushbeam.co *.ww38.lushbeam.co

*.api.naza555.bet *.dev.naza555.bet naza555.bet *.naza555.bet *.staging.naza555.bet *.www.naza555.bet

*.sso.statisga.com statisga.com *.statisga.com

telsy.online *.telsy.online

*.shinkafuraha.tufuna.tech *.test.tufuna.tech *.try.tufuna.tech tufuna.tech *.tufuna.tech

tvoy-otziv.online *.tvoy-otziv.online

universitydirectory.au *.universitydirectory.au

*.app.www-52avav.com *.com.www-52avav.com *.fun.www-52avav.com *.nz.www-52avav.com *.om.www-52avav.com *.vip.www-52avav.com www-52avav.com *.www-52avav.com

*.ftp.zomorodlotfi.com *.test.zomorodlotfi.com zomorodlotfi.com *.zomorodlotfi.com