SSL Certificate Analysis for yaberu.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=voodoo.studio

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 06, 2026

Valid Until

May 07, 2026 87 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

1A:55:B9:49:3C:86:63:77:B7:68:BE:62:28:A0:4D:60:AA:9F:6B:7A:93:A4:FF:7B:0F:BC:21:0A:FD:38:C1:E5

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

yaberu.com *.yaberu.com *.apps.yaberu.com *.mailgate.yaberu.com *.oavrworacle.yaberu.com *.oracle.yaberu.com *.wiki.yaberu.com *.ww16.yaberu.com

Other domains in certificate

517thartillery.org *.517thartillery.org *.services.517thartillery.org

arizonatshirt.com *.arizonatshirt.com *.backup.arizonatshirt.com *.bbs.arizonatshirt.com *.crm.arizonatshirt.com *.sitemaps.arizonatshirt.com *.test.arizonatshirt.com *.wiki.arizonatshirt.com

bonospoker.com *.bonospoker.com *.wiki.bonospoker.com

*.bysncstfsvd.descalza.com descalza.com *.descalza.com *.iglesia.descalza.com *.vpn.descalza.com *.wiki.descalza.com

frites.it *.frites.it *.superset.frites.it

*.ebay.ganedinero.com ganedinero.com *.ganedinero.com *.hostmaster.ganedinero.com *.random.ganedinero.com *.wiki.ganedinero.com *.ww25.ganedinero.com

*.forum.greyrabbit.com greyrabbit.com *.greyrabbit.com *.owa.greyrabbit.com *.wiki.greyrabbit.com

*.hostmaster.informaljobs.com informaljobs.com *.informaljobs.com *.m.informaljobs.com *.vpn.informaljobs.com *.wiki.informaljobs.com

kidsgamesandtoys.com *.kidsgamesandtoys.com *.wiki.kidsgamesandtoys.com

motosdecross.com *.motosdecross.com *.wiki.motosdecross.com

*.iki.offisave.com offisave.com *.offisave.com *.old.offisave.com *.store.offisave.com *.temp.offisave.com *.wiki.offisave.com

*.hostmaster.ousada.com ousada.com *.ousada.com *.tenis.ousada.com *.vpn.ousada.com *.wiki.ousada.com *.ww1.ousada.com *.ww25.ousada.com

purebag.us *.purebag.us *.www.purebag.us

seal.so *.seal.so *.wiki.seal.so

*.mail.thenoon.it thenoon.it *.thenoon.it

*.b0455b13-de4e-43a0-8e67-f11f6a14e7e1.ucfwtrust.com *.labs.ucfwtrust.com ucfwtrust.com *.ucfwtrust.com

*.mail.voodoo.studio *.portal.voodoo.studio voodoo.studio *.voodoo.studio

*.hostmaster.vremea.it vremea.it *.vremea.it