SSL Certificate Analysis for vrshow.co - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=tdquant.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 04, 2026

Valid Until

September 02, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

EA:DA:7F:3B:6A:92:BE:12:3C:45:E8:8E:B4:38:CC:D1:78:08:EF:C1:1B:11:FC:DC:78:F7:4A:21:1B:07:F6:2F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

vrshow.co *.vrshow.co *.sitemap.vrshow.co

Other domains in certificate

defifleet.com *.defifleet.com *.sitemap.defifleet.com *.sitemaps.defifleet.com *.ww1.defifleet.com

*.3g.ebtedgeonline.com *.admin.ebtedgeonline.com *.api.ebtedgeonline.com *.app.ebtedgeonline.com *.assets.ebtedgeonline.com *.backup.ebtedgeonline.com *.blog.ebtedgeonline.com ebtedgeonline.com *.ebtedgeonline.com *.new.ebtedgeonline.com *.shop.ebtedgeonline.com *.uat.ebtedgeonline.com

*.api-dev.educommconference.com *.auth.educommconference.com *.config.educommconference.com educommconference.com *.educommconference.com *.gateway.educommconference.com *.git.educommconference.com *.iot.educommconference.com *.m.educommconference.com *.mp.educommconference.com *.pdf.educommconference.com *.prod.educommconference.com *.remote.educommconference.com *.sitemaps.educommconference.com *.uat.educommconference.com *.user.educommconference.com *.www.educommconference.com

*.etdrfv1.petwarejoy.com *.mail.petwarejoy.com *.mailer.petwarejoy.com petwarejoy.com *.petwarejoy.com *.qa.petwarejoy.com *.web.petwarejoy.com

*.13hojp.plan7.cn *.1d2q32.plan7.cn *.1sg2li.plan7.cn *.3w9vo.plan7.cn *.a45h72.plan7.cn *.aw81z.plan7.cn *.e581j.plan7.cn *.erecwgvx18k.plan7.cn *.m.plan7.cn *.o5xzo.plan7.cn *.owklu2.plan7.cn plan7.cn *.plan7.cn *.qc5b2t.plan7.cn *.s5569s.plan7.cn *.uaa9zc.plan7.cn *.udg9v7.plan7.cn *.y56bn.plan7.cn

*.api.starlinkpay.com *.msp.starlinkpay.com starlinkpay.com *.starlinkpay.com

*.concert.tapa.net *.dashs.tapa.net *.isc25.tapa.net *.m.tapa.net *.mm.tapa.net *.random.tapa.net *.sitemap.tapa.net *.sitemaps.tapa.net *.sunscapedoradopacificoix.tapa.net tapa.net *.tapa.net *.tipi.tapa.net *.www.tapa.net

*.sitemaps.tdquant.com tdquant.com *.tdquant.com

*.com.teslaorava.com *.ns2.teslaorava.com teslaorava.com *.teslaorava.com

*.m.xn--p8st1p.com *.sitemap.xn--p8st1p.com xn--p8st1p.com *.xn--p8st1p.com