SSL Certificate Analysis for vulkan-rus.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=postpone.it

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 08, 2026

Valid Until

July 07, 2026 60 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F5:BC:ED:80:59:B8:81:A6:E3:A9:DF:EF:DB:C4:D5:49:37:A4:0A:65:26:18:41:5A:CF:7C:70:E9:A5:7A:13:43

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

vulkan-rus.net *.vulkan-rus.net *.m1e331a.vulkan-rus.net *.m21fb7e.vulkan-rus.net *.m2354ca.vulkan-rus.net *.m485067.vulkan-rus.net *.m515aac.vulkan-rus.net *.m720f70.vulkan-rus.net *.m9f9a6d.vulkan-rus.net *.ma90682.vulkan-rus.net *.maaf772.vulkan-rus.net *.mcf9e2b.vulkan-rus.net *.mf30dcd.vulkan-rus.net *.mf3d569.vulkan-rus.net

Other domains in certificate

avisador.net *.avisador.net *.ww25.avisador.net *.ww38.avisador.net

backyardgamez.com *.backyardgamez.com *.ww25.backyardgamez.com

bankfrist.com *.bankfrist.com *.ticketing.bankfrist.com *.ww25.bankfrist.com

blackhourse.co.uk *.blackhourse.co.uk *.random.blackhourse.co.uk

freeshred.com *.freeshred.com

*.admin.helloalma.co *.billing.helloalma.co *.dev.helloalma.co helloalma.co *.helloalma.co *.old.helloalma.co *.production.helloalma.co *.ww1.helloalma.co *.ww25.helloalma.co

pickuptrucks.com.au *.pickuptrucks.com.au *.ww38.pickuptrucks.com.au

*.app.postpone.it *.backend.postpone.it *.dev.postpone.it *.hostmaster.postpone.it postpone.it *.postpone.it *.staging.postpone.it

*.cpanel.pricely.in *.ftp.pricely.in *.mail.pricely.in pricely.in *.pricely.in *.webdisk.pricely.in *.webmail.pricely.in *.whm.pricely.in

*.hostmaster.rakshana.com rakshana.com *.rakshana.com

rangershonda.com *.rangershonda.com *.replicate.rangershonda.com

*.bbs.religiousportal.com religiousportal.com *.religiousportal.com *.ww16.religiousportal.com

searchsrvslts.com *.searchsrvslts.com

*.ai.tai.de *.c.tai.de *.morti.tai.de tai.de *.tai.de *.ww1.tai.de *.ww25.tai.de *.ww38.tai.de

topflights.au *.topflights.au *.ww25.topflights.au *.ww38.topflights.au

trekspace.org *.trekspace.org *.ww25.trekspace.org

wcohtudcio.com *.wcohtudcio.com

wecanhandle.it *.wecanhandle.it

welcometomyhome.it *.welcometomyhome.it