SSL Certificate Analysis for www.flyersloop.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=huntsvillehometours.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 18, 2026

Valid Until

May 19, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B1:AC:50:41:71:B1:EA:32:70:4D:3D:CB:B2:FF:26:87:50:9A:43:0F:51:DB:6E:0D:1A:E7:89:88:73:70:74:02

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

flyersloop.com *.flyersloop.com *.cpanel.flyersloop.com *.www.flyersloop.com

Other domains in certificate

eurogamerbet.com *.eurogamerbet.com

*.6450e94e-3d93-4aac-b5f0-a34ecc978f50.funfund.app *.admin.funfund.app *.app.funfund.app *.assets.funfund.app *.aylzvstg.funfund.app *.backup.funfund.app *.cb8ab828-aeb8-405c-9dea-bf8666845234.funfund.app *.dashboard.funfund.app *.dev.funfund.app *.dfec6cfc-9c92-461e-b3ae-25df07512cdd.funfund.app *.eml.funfund.app *.en.funfund.app *.ftp.funfund.app funfund.app *.funfund.app *.hostmaster.funfund.app *.lanqhweb.funfund.app *.m.funfund.app *.mail.funfund.app *.mailer.funfund.app *.marketing.funfund.app *.members.funfund.app *.mta-sts.funfund.app *.mx.funfund.app *.openpgpkey.funfund.app *.posta.funfund.app *.qa.funfund.app *.secure.funfund.app *.spam.funfund.app *.staging.funfund.app *.svnofzuh.funfund.app *.test.funfund.app *.uat.funfund.app *.v1.funfund.app *.web.funfund.app *.www.funfund.app

*.bi-demo.gaymaletue.com gaymaletue.com *.gaymaletue.com *.jenkins.gaymaletue.com *.random.gaymaletue.com

huntsvillehometours.com *.huntsvillehometours.com

ideella.org *.ideella.org

micaela.fun *.micaela.fun *.s3.micaela.fun *.ww.micaela.fun

*.concretesolutio.ns.money *.enercityl.ns.money *.garve.ns.money *.hotdomai.ns.money ns.money *.ns.money

*.blog.robertchurchill.com robertchurchill.com *.robertchurchill.com

usarmyreserve.com *.usarmyreserve.com

*.app.wheelers360.com *.demo.wheelers360.com *.ts.wheelers360.com wheelers360.com *.wheelers360.com *.ww12.wheelers360.com

*.86-trx-250r.yedirenkhaber.com *.herald-z.yedirenkhaber.com *.spectrum-4k.yedirenkhaber.com *.uline-locations.yedirenkhaber.com yedirenkhaber.com *.yedirenkhaber.com

*.agh.yenisatir.space *.dns.yenisatir.space *.doh1.yenisatir.space yenisatir.space *.yenisatir.space

*.backend.zentv.live *.intelligence.zentv.live *.space.zentv.live *.superset.zentv.live *.www.zentv.live zentv.live *.zentv.live