SSL Certificate Analysis for 10x.spot - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=10x.spot

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 23, 2026

Valid Until

August 21, 2026 65 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

82:45:54:5F:94:0E:D1:59:28:72:2C:D6:E9:C4:9E:B7:75:B5:C7:A2:FF:1E:C4:F3:56:1A:36:82:C6:C0:13:FF

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

10x.spot *.10x.spot *.api.10x.spot *.app.10x.spot *.assets.10x.spot *.backup.10x.spot *.cqegbsecure.10x.spot *.dashboard.10x.spot *.demo.10x.spot *.dev.10x.spot *.hr.10x.spot *.intranet.10x.spot *.lymirhpg.10x.spot *.marketing.10x.spot *.my.10x.spot *.public.10x.spot *.qa.10x.spot *.secure.10x.spot *.sharepoint.10x.spot *.staging.10x.spot *.stg.10x.spot *.test.10x.spot *.uat.10x.spot *.v1.10x.spot *.v2.10x.spot *.web.10x.spot

Other domains in certificate

*.147.afafa.com afafa.com *.afafa.com *.bband1.afafa.com *.beta.afafa.com *.imap.afafa.com *.insight.afafa.com *.mail.afafa.com *.members.afafa.com *.seaisland.afafa.com *.secure.afafa.com *.secureaccess.afafa.com *.ww16.afafa.com *.ww38.afafa.com *.www.afafa.com

bivaorganic.de *.bivaorganic.de

bridgeassociatesllc.com *.bridgeassociatesllc.com *.rfz1ik.bridgeassociatesllc.com

*.6nc5fu.dizipal1042.com dizipal1042.com *.dizipal1042.com

*.0vnt78.dizipal1046.com dizipal1046.com *.dizipal1046.com *.www.dizipal1046.com

dpslot88best.cyou *.dpslot88best.cyou *.q3wdqo.dpslot88best.cyou

*.fd22702b-77d5-42d6-80f9-8a35e306eb5c.freedombiz.us freedombiz.us *.freedombiz.us *.hostmaster.freedombiz.us *.m.freedombiz.us *.test.freedombiz.us

genkinka-kuchikomi.info *.genkinka-kuchikomi.info *.test.genkinka-kuchikomi.info

*.boe459.iliad.pics *.briydnko.iliad.pics *.fupsgeno.iliad.pics *.gjplnzkf.iliad.pics iliad.pics *.iliad.pics *.jclpyuzd.iliad.pics *.m.iliad.pics *.yflnhzic.iliad.pics

*.32.pzarzima.com pzarzima.com *.pzarzima.com

*.m.xn--6zrv7h.com *.supersets.xn--6zrv7h.com xn--6zrv7h.com *.xn--6zrv7h.com

*.ww12.yabam1.me *.ww7.yabam1.me *.www.yabam1.me yabam1.me *.yabam1.me

*.yanzu.yaza.in yaza.in *.yaza.in