SSL Certificate Analysis for users.arrand.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=seyoyo59.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 01, 2026

Valid Until

June 30, 2026 54 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

3E:89:23:95:90:09:46:42:27:3F:91:47:FD:10:F4:B9:B9:83:CE:AF:C0:68:67:9A:6C:E6:30:C6:4D:1B:48:B0

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

arrand.com *.arrand.com *.backbone.arrand.com *.db.arrand.com *.drupal.arrand.com *.eng.arrand.com *.sc.arrand.com *.users.arrand.com

Other domains in certificate

airfareprices.it *.airfareprices.it

arguably.it *.arguably.it

brachscandy.com *.brachscandy.com *.helpdesk.brachscandy.com *.ww16.brachscandy.com

btcswaziland.com *.btcswaziland.com *.ww25.btcswaziland.com

creditseame.com *.creditseame.com

*.c3ed14be-a4e8-4d79-84f8-c8033f785222.dhabigame.shop *.demo.dhabigame.shop dhabigame.shop *.dhabigame.shop *.f8d8e22e-8e44-4e78-a590-c7a6f0e1d4f7.dhabigame.shop *.ff07eb83-8be2-4753-9f0d-aafd51faade2.dhabigame.shop *.ftp.dhabigame.shop *.klfiacje.dhabigame.shop *.sitemaps.dhabigame.shop *.thqxxsitemaps.dhabigame.shop

eray.it *.eray.it *.www.eray.it

ere-elpais.com *.ere-elpais.com *.ww25.ere-elpais.com

*.anime.forced.sex *.api.forced.sex forced.sex *.forced.sex *.monster.forced.sex *.subtiteled.forced.sex *.vintege.forced.sex *.wife.forced.sex

kudosbank.co *.kudosbank.co *.ww25.kudosbank.co

meathead.it *.meathead.it

mycfcc.com *.mycfcc.com *.ww25.mycfcc.com

ottantasei.it *.ottantasei.it

*.dyd.perruquers.com *.m.perruquers.com perruquers.com *.perruquers.com

scaping.it *.scaping.it

*.14.seyoyo59.com *.33.seyoyo59.com *.39.seyoyo59.com *.44.seyoyo59.com *.53.seyoyo59.com *.59.seyoyo59.com *.75.seyoyo59.com *.8.seyoyo59.com *.84.seyoyo59.com *.97.seyoyo59.com *.98.seyoyo59.com *.app.seyoyo59.com *.com65.seyoyo59.com seyoyo59.com *.seyoyo59.com

sniffle.it *.sniffle.it

vitalityresearch.com *.vitalityresearch.com *.ww42.vitalityresearch.com

*.ww16.wwwlfacebook.com *.ww25.wwwlfacebook.com *.ww38.wwwlfacebook.com wwwlfacebook.com *.wwwlfacebook.com

*.random.xn--cannabisbltter-fib.de xn--cannabisbltter-fib.de *.xn--cannabisbltter-fib.de