SSL Certificate Analysis for test.escaperat.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=1317.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 05, 2026

Valid Until

May 06, 2026 82 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

60:C2:C1:A0:0B:AE:A5:5C:E6:3E:37:7A:65:88:DD:3F:57:5E:13:01:45:A0:46:9D:46:37:E0:67:B2:5A:12:8C

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

escaperat.com *.escaperat.com *.webdisk.escaperat.com

Other domains in certificate

1317.it *.1317.it

13274.one *.13274.one

132o8qqdrgta.com *.132o8qqdrgta.com

137s.xyz *.137s.xyz

14261.blog *.14261.blog

14ag.com *.14ag.com

14c403cc57a2bbb9.com *.14c403cc57a2bbb9.com

14k0i86.shop *.14k0i86.shop

1502.it *.1502.it

156bet.live *.156bet.live

16055.loan *.16055.loan

1629o00.com *.1629o00.com

16918.loan *.16918.loan

17155.bid *.17155.bid

1800385.loan *.1800385.loan

181269.pizza *.181269.pizza

182463.loans *.182463.loans

18522.mobi *.18522.mobi

185221.cc *.185221.cc

18799.vip *.18799.vip

18iis.cn *.18iis.cn

191eytek.sbs *.191eytek.sbs

193297.com *.193297.com

19363.loan *.19363.loan

19851.loan *.19851.loan

19ocaktelefon.sbs *.19ocaktelefon.sbs

1cq3vk.shop *.1cq3vk.shop

22020.loan *.22020.loan

238597.cc *.238597.cc

24008.loan *.24008.loan

24803.co *.24803.co

24824.pictures *.24824.pictures

254090.com *.254090.com

255209.shop *.255209.shop

255211.shop *.255211.shop

25528.agency *.25528.agency

25983.net *.25983.net

26345508.vip *.26345508.vip

26600.co *.26600.co

29555kk.com *.29555kk.com

30412.loan *.30412.loan

315859.net *.315859.net

twittool.com *.twittool.com *.webdisk.twittool.com