SSL Certificate Analysis for aaa.missingthemoney.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=coachinginmobiliario.co

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 07, 2026

Valid Until

April 07, 2026 55 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B7:8B:0C:36:2C:7F:8F:77:44:FE:5D:74:CC:3F:D3:28:D5:0E:F1:CE:C4:BF:8E:AF:71:1A:E6:8B:3A:D8:F8:AD

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

missingthemoney.com *.missingthemoney.com *.aaa.missingthemoney.com *.www.missingthemoney.com

Other domains in certificate

1ln9q.life *.1ln9q.life

9thavenuedesigns.com.au *.9thavenuedesigns.com.au

acmetoools.com *.acmetoools.com *.wildcard.acmetoools.com *.ww25.acmetoools.com

aoom.us *.aoom.us *.snu-ac-kr.aoom.us *.tcdsb.aoom.us *.us04web.aoom.us *.www.aoom.us *.zoomtw.aoom.us

campusen.com *.campusen.com *.ww1.campusen.com

chasemanhattanbank.com *.chasemanhattanbank.com *.wildcard.chasemanhattanbank.com *.ww25.chasemanhattanbank.com *.ww38.chasemanhattanbank.com

*.cfrojas.coachinginmobiliario.co coachinginmobiliario.co *.coachinginmobiliario.co *.pixel.coachinginmobiliario.co *.random.coachinginmobiliario.co

digitalism.com.br *.digitalism.com.br

harborcafe.me *.harborcafe.me

intelius.co *.intelius.co *.intelius.intelius.co *.mailer.intelius.co *.ww25.intelius.co

mauritiusrentcar.com *.mauritiusrentcar.com *.random.mauritiusrentcar.com *.wildcard.mauritiusrentcar.com

mealdeals.com.au *.mealdeals.com.au *.wildcard.mealdeals.com.au

mpowerenergy.co *.mpowerenergy.co *.ww25.mpowerenergy.co

*.doc.naxus.studio naxus.studio *.naxus.studio *.notion.naxus.studio *.old.naxus.studio *.staging1.naxus.studio

needletrax.com *.needletrax.com

nena.store *.nena.store *.random.nena.store *.ww38.nena.store

*.blog.plusportals.co *.git.plusportals.co plusportals.co *.plusportals.co *.qqiicgit.plusportals.co *.wildcard.plusportals.co *.ww12.plusportals.co *.ww7.plusportals.co *.www.plusportals.co

*.api.projectmanagement-open.space projectmanagement-open.space *.projectmanagement-open.space *.www.projectmanagement-open.space

qusi.fr *.qusi.fr

sysneaker.store *.sysneaker.store

viraltoday.click *.viraltoday.click

*.blog.xposed.pro *.random.xposed.pro *.wildcard.xposed.pro *.ww25.xposed.pro *.www.xposed.pro xposed.pro *.xposed.pro