SSL Certificate Analysis for test.xrypt.ing - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=030939.cc

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 05, 2026

Valid Until

May 06, 2026 79 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F3:F6:E1:0B:01:B8:77:A8:4A:38:FF:62:8C:B1:F7:7E:67:2C:67:0C:C2:F1:5C:AA:92:2E:CA:71:A7:1D:F8:9F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

xrypt.ing *.xrypt.ing

Other domains in certificate

030939.cc *.030939.cc

032vns.cc *.032vns.cc

034058.com *.034058.com

035087.cfd *.035087.cfd

03618.loan *.03618.loan

03734.loan *.03734.loan

037672.bid *.037672.bid

videoshd.club *.videoshd.club

viesluxtop.com *.viesluxtop.com

villasmorelos.com *.villasmorelos.com

vinandrofiesole.com *.vinandrofiesole.com

violencespolicieres.com *.violencespolicieres.com

vip44jp.org *.vip44jp.org

virniosdalalink.cyou *.virniosdalalink.cyou

visi0o-mail.ca *.visi0o-mail.ca

vitaragaroniiosdalforce.cyou *.vitaragaroniiosdalforce.cyou

vitavox.com *.vitavox.com

vnv44.com *.vnv44.com

vs2gquz.cyou *.vs2gquz.cyou

vs5y05q.cyou *.vs5y05q.cyou

vsiaragaroniiosdalnwise.shop *.vsiaragaroniiosdalnwise.shop

vunda.click *.vunda.click

vutangkitchen.com *.vutangkitchen.com

vv100.cc *.vv100.cc

vvvwin66.vip *.vvvwin66.vip

vvvwin77.vip *.vvvwin77.vip

vvvwin88.vip *.vvvwin88.vip

w-e-c.com *.w-e-c.com

wa6z7yd.cyou *.wa6z7yd.cyou

xjiaoav251.com *.xjiaoav251.com

xn--dngdung-ksb.com *.xn--dngdung-ksb.com

xn--tlqr02cc2bsz4a.com *.xn--tlqr02cc2bsz4a.com

xn--xwt756b.xyz *.xn--xwt756b.xyz

xn--yfr84heue7sj.com *.xn--yfr84heue7sj.com

xpdeu.bid *.xpdeu.bid

xsd8733.cyou *.xsd8733.cyou

xtadxr.xyz *.xtadxr.xyz

yfc40150.cc *.yfc40150.cc

yololabellingtool.com *.yololabellingtool.com

yuendumpling.com *.yuendumpling.com

zxkljv.xyz *.zxkljv.xyz

zxxtzxxtcq.com *.zxxtzxxtcq.com

zybc.xyz *.zybc.xyz

zzp70.com *.zzp70.com