SSL Certificate Analysis for vpn.feastsbles.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ghostrider.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 14, 2026

Valid Until

May 15, 2026 87 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

23:74:40:2E:55:FF:3E:0E:A8:42:FE:50:54:FB:86:0C:32:B7:E0:E7:93:B8:90:01:92:85:29:7F:12:98:5C:72

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

feastsbles.com *.feastsbles.com *.admin.feastsbles.com *.ai.feastsbles.com *.analytic.feastsbles.com *.analytics.feastsbles.com *.api.feastsbles.com *.awesome.feastsbles.com *.bi-integration.feastsbles.com *.biintegration.feastsbles.com *.board.feastsbles.com *.chat.feastsbles.com *.ci-jenkins.feastsbles.com *.cicd-alpha.feastsbles.com *.cicd.feastsbles.com *.dash.feastsbles.com *.dashboard.feastsbles.com *.data.feastsbles.com *.demo-cicd.feastsbles.com *.demo.feastsbles.com *.dev.feastsbles.com *.integration-superset.feastsbles.com *.jenkins.feastsbles.com *.mail.feastsbles.com *.mystery.feastsbles.com *.notexistsww38.feastsbles.com *.production.feastsbles.com *.redash.feastsbles.com *.remote.feastsbles.com *.report.feastsbles.com *.staging.feastsbles.com *.status.feastsbles.com *.superset.feastsbles.com *.vpn.feastsbles.com *.webmail.feastsbles.com *.welcome.feastsbles.com *.workflow.feastsbles.com *.ww01.feastsbles.com *.ww38.feastsbles.com *.www.feastsbles.com

Other domains in certificate

adatvedelem2018.eu *.adatvedelem2018.eu

cateringassiste.eu *.cateringassiste.eu

gfxtram.com *.gfxtram.com *.git.gfxtram.com *.hostmaster.gfxtram.com *.nav.gfxtram.com *.notexistsgit.gfxtram.com *.random.gfxtram.com *.sitemap.gfxtram.com *.sitemaps.gfxtram.com *.ssl.gfxtram.com *.ww1.gfxtram.com *.ww12.gfxtram.com *.ww7.gfxtram.com *.www.gfxtram.com

*.admin.ghostrider.it ghostrider.it *.ghostrider.it

*.blogs.intimateagent.com intimateagent.com *.intimateagent.com *.mssql.intimateagent.com *.mx.intimateagent.com *.themes-dev.intimateagent.com *.vpn.intimateagent.com *.www.intimateagent.com

*.git.mathgram.xyz *.hostmaster.mathgram.xyz mathgram.xyz *.mathgram.xyz *.postmaster.mathgram.xyz *.sitemaps.mathgram.xyz *.ww1.mathgram.xyz *.ww7.mathgram.xyz

*.api.tippitt.com *.dev.tippitt.com *.mail.tippitt.com *.rustore.tippitt.com *.test.tippitt.com tippitt.com *.tippitt.com *.ww11.tippitt.com *.ww16.tippitt.com *.ww38.tippitt.com

uslocaldirect.com *.uslocaldirect.com *.wildcard.uslocaldirect.com