SSL Certificate Analysis for vijayelectronics.pro - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=bulleyeshop.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 15, 2026

Valid Until

September 13, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

48:20:0E:EA:AC:CA:C3:70:29:EA:36:CE:0F:19:C6:F7:8A:92:5C:C0:6C:7C:6A:6B:CF:AE:CB:EE:99:EB:28:CF

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

vijayelectronics.pro *.vijayelectronics.pro

Other domains in certificate

6figureformula.net *.6figureformula.net *.api.6figureformula.net *.hostmaster.6figureformula.net *.m.6figureformula.net *.webdisk.6figureformula.net *.www.6figureformula.net

bandecam.com *.bandecam.com *.ww17.bandecam.com

*.a.bulleyeshop.com *.biz.bulleyeshop.com *.board.bulleyeshop.com *.br.bulleyeshop.com bulleyeshop.com *.bulleyeshop.com *.catalog.bulleyeshop.com *.controlpanel.bulleyeshop.com *.directory.bulleyeshop.com *.domains.bulleyeshop.com *.files.bulleyeshop.com *.fun.bulleyeshop.com *.git.bulleyeshop.com *.katalog.bulleyeshop.com *.m.bulleyeshop.com *.research.bulleyeshop.com *.staging.bulleyeshop.com *.users.bulleyeshop.com *.ww1.bulleyeshop.com *.ww25.bulleyeshop.com *.ww38.bulleyeshop.com

*.admin.cringe.wtf *.api.cringe.wtf *.app.cringe.wtf *.assets.cringe.wtf *.blog.cringe.wtf cringe.wtf *.cringe.wtf *.demo.cringe.wtf *.dev.cringe.wtf *.dev1redash.cringe.wtf *.hostmaster.cringe.wtf *.melissa.cringe.wtf *.qa.cringe.wtf *.redash.cringe.wtf *.secure.cringe.wtf *.ssh.cringe.wtf *.stg.cringe.wtf *.web.cringe.wtf *.www.cringe.wtf *.z4jzt1.cringe.wtf

*.admin.trueworld.net *.ajedrezadmin.trueworld.net *.ch.trueworld.net *.ch7.trueworld.net *.cms.trueworld.net *.comune.trueworld.net *.finance.trueworld.net *.ingestor.trueworld.net *.mail.trueworld.net *.mail02.trueworld.net *.mail46.trueworld.net *.mailgate.trueworld.net *.mailgw.trueworld.net *.mailhost.trueworld.net *.mbox.trueworld.net *.mms.trueworld.net *.mmsalbum.trueworld.net *.mobile.trueworld.net *.mx02.trueworld.net *.mx1.trueworld.net *.mx10.trueworld.net *.mx4.trueworld.net *.newmail.trueworld.net *.ns1.trueworld.net *.onlinemon.trueworld.net *.oppo.trueworld.net *.postmaster.trueworld.net *.qatools.trueworld.net *.smtp2.trueworld.net *.sport.trueworld.net *.srv.trueworld.net *.static.trueworld.net *.streaming8.trueworld.net trueworld.net *.trueworld.net *.webboard.trueworld.net *.wifi.trueworld.net