SSL Certificate Analysis for theemptycross.store - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=volnaonepromo.site

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

March 29, 2026

Valid Until

June 27, 2026 35 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

01:C9:09:AF:72:72:3F:7F:BB:CD:AE:DE:FB:AF:A9:8F:DA:5B:4A:B2:AC:BF:53:ED:D8:AF:8E:F1:5E:0B:F1:A0

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

theemptycross.store *.theemptycross.store

Other domains in certificate

apostbet.co *.apostbet.co

ba090135d2.com *.ba090135d2.com

dana178.us *.dana178.us

fukuoka-bluenote.com *.fukuoka-bluenote.com *.random.fukuoka-bluenote.com *.ww38.fukuoka-bluenote.com

fz25.store *.fz25.store

g1globonews.website *.g1globonews.website

gleamshop.store *.gleamshop.store

hazemlababidi.website *.hazemlababidi.website

healthyworldlifesltyle.com *.healthyworldlifesltyle.com

healtwisher.space *.healtwisher.space

hotela.pro *.hotela.pro

ht3files.space *.ht3files.space

isjhon.site *.isjhon.site

j999slot.space *.j999slot.space

jumvox.store *.jumvox.store

junglelanguages.com *.junglelanguages.com

kadeblogs.store *.kadeblogs.store

*.autoconfig.kikcarts.com kikcarts.com *.kikcarts.com *.www.kikcarts.com

koreanz-17.store *.koreanz-17.store

krasivoproject.site *.krasivoproject.site

lightbooking.store *.lightbooking.store

livecampustours.com *.livecampustours.com

malshi.store *.malshi.store

melbournerollershutters.net.au *.melbournerollershutters.net.au

miguelarenas.store *.miguelarenas.store

news-turbo.site *.news-turbo.site

numberoneselfcare.store *.numberoneselfcare.store

offer-mikrozajm.store *.offer-mikrozajm.store

on-shopping.space *.on-shopping.space

onavolna.space *.onavolna.space

prefsol.tech *.prefsol.tech

shoeshs.store *.shoeshs.store

sleepytails.store *.sleepytails.store

tandemeases.website *.tandemeases.website

tottalysience.co *.tottalysience.co

uploadgameserver12.space *.uploadgameserver12.space

vamrabota.site *.vamrabota.site

volnaonepromo.site *.volnaonepromo.site

wazzup24.store *.wazzup24.store

wifirouter.store *.wifirouter.store

wjny91.sbs *.wjny91.sbs

zaem366.store *.zaem366.store