SSL Certificate Analysis for web.razorskill.info - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=xn--48sp03bcym.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

May 29, 2026

Valid Until

August 27, 2026 66 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C2:B0:34:E1:DE:1C:6B:35:68:3D:50:E1:A9:CB:96:E4:27:01:BF:E4:2E:CF:81:8E:31:9F:BC:5F:DC:BB:79:7E

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

razorskill.info *.razorskill.info *.admin.razorskill.info *.api.razorskill.info *.dashboard.razorskill.info *.demo.razorskill.info *.dev.razorskill.info *.qa.razorskill.info *.secure.razorskill.info *.staging.razorskill.info *.web.razorskill.info *.www.razorskill.info

Other domains in certificate

*.admin.devamajig.net devamajig.net *.devamajig.net

financeblacks.com *.financeblacks.com *.hyperlend.financeblacks.com

*.go.hartfordadvisorsesg.org hartfordadvisorsesg.org *.hartfordadvisorsesg.org

hotell.us *.hotell.us *.uat.hotell.us

live-nature.info *.live-nature.info *.q72den.live-nature.info

onlinelawyers.org *.onlinelawyers.org *.staging.onlinelawyers.org *.test.onlinelawyers.org

*.random.ravergator.ca ravergator.ca *.ravergator.ca

screendoor.my *.screendoor.my *.www.screendoor.my

*.anyconnectvpn.thebeast1.com *.bgptools-wildcard-confirmed.thebeast1.com *.cpanel.thebeast1.com *.drvpn.thebeast1.com *.hostmaster.thebeast1.com *.mail.thebeast1.com *.sitemap.thebeast1.com *.sitemaps.thebeast1.com thebeast1.com *.thebeast1.com *.webdisk.thebeast1.com *.webmail.thebeast1.com *.www.thebeast1.com

*.chart.themove.it *.metrics.themove.it *.staging.themove.it *.superset.themove.it themove.it *.themove.it

*.server1.trade.travel trade.travel *.trade.travel *.www.trade.travel

*.a.wearesbdisco.info *.api.wearesbdisco.info *.backup.wearesbdisco.info *.dev.wearesbdisco.info *.uat.wearesbdisco.info wearesbdisco.info *.wearesbdisco.info *.www.wearesbdisco.info

*.4.wy9688.cn *.ivpozqun.wy9688.cn *.nlgquvpjewk.wy9688.cn *.q.wy9688.cn *.qdd.wy9688.cn *.qun.wy9688.cn wy9688.cn *.wy9688.cn

*.betting.xn--48sp03bcym.com *.cloud.xn--48sp03bcym.com *.rd.xn--48sp03bcym.com *.rds.xn--48sp03bcym.com *.rdweb.xn--48sp03bcym.com *.remote.xn--48sp03bcym.com xn--48sp03bcym.com *.xn--48sp03bcym.com

*.m.zillagroup.com *.wildcard.zillagroup.com zillagroup.com *.zillagroup.com