SSL Certificate Analysis for 8.am - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=8653056.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 18, 2026

Valid Until

July 17, 2026 71 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

50:DB:E0:AF:ED:EC:0A:53:B4:BA:66:2A:2C:0B:9A:2A:45:3D:E5:A5:6B:CC:E1:AC:0D:9D:87:9A:F4:58:49:06

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

8.am *.8.am *.4.8.am

Other domains in certificate

*.009.052.cam 052.cam *.052.cam *.182.052.cam *.192.052.cam *.45a1fe36-6f2f-44b5-b55a-de367fe371db.052.cam *.80b118a2-7e57-4828-8090-9a87d870bb88.052.cam *.a94f5be2-c4f3-4449-8cba-ac2439e286b4.052.cam *.adm.052.cam *.admin.052.cam *.api.052.cam *.app.052.cam *.archive.052.cam *.blog.052.cam *.cloudera.052.cam *.comet.052.cam *.dcproxivwyhostmaster.052.cam *.demo.052.cam *.dev.052.cam *.docs.052.cam *.encryption.052.cam *.extender.052.cam *.external.052.cam *.fbbnhadmin.052.cam *.forge.052.cam *.hagqxportal.052.cam *.hostmaster.052.cam *.hr.052.cam *.lightning.052.cam *.members.052.cam *.my.052.cam *.pop31.052.cam *.portal.052.cam *.producer.052.cam *.redmine.052.cam *.rt.052.cam *.share.052.cam *.sharepoint.052.cam *.smtp3.052.cam *.test.052.cam *.trading.052.cam *.transport.052.cam *.willow.052.cam *.www3.052.cam

1100clx301.top *.1100clx301.top *.c60fe2ee0a.1100clx301.top

1101jys301.top *.1101jys301.top *.702460f6c0.1101jys301.top

8653056.com *.8653056.com *.ten.8653056.com

bbnbibleinstitute.com *.bbnbibleinstitute.com *.mail.bbnbibleinstitute.com

*.admin.demosoftwaresolution.co *.app.demosoftwaresolution.co *.assets.demosoftwaresolution.co demosoftwaresolution.co *.demosoftwaresolution.co *.test.demosoftwaresolution.co *.webmail.demosoftwaresolution.co

*.api.fetchasquadscore.com fetchasquadscore.com *.fetchasquadscore.com *.rds.fetchasquadscore.com *.remote.fetchasquadscore.com

hackonline.pro *.hackonline.pro *.hostmaster.hackonline.pro

nannying.com.au *.nannying.com.au *.ww25.nannying.com.au *.ww38.nannying.com.au

*.backend.telex.link *.ftp.telex.link *.random.telex.link telex.link *.telex.link

*.cpcontacts.yinghuadm.pro *.m.yinghuadm.pro *.smtpauth.yinghuadm.pro *.www.yinghuadm.pro yinghuadm.pro *.yinghuadm.pro