SSL Certificate Analysis for access.servicead.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=wingede.college

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 03, 2026

Valid Until

May 04, 2026 85 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

AD:A3:13:11:BD:FE:C1:15:B5:2A:F7:5D:2C:83:BB:7A:10:1B:7D:88:00:F7:9E:82:66:C9:14:5F:1A:C6:B7:3D

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

servicead.com *.servicead.com *.access.servicead.com *.m.servicead.com

Other domains in certificate

12x12.live *.12x12.live *.laravel.12x12.live

aniz.net *.aniz.net *.dashboard.aniz.net

cleancuttreecare.com *.cleancuttreecare.com *.vpn.cleancuttreecare.com

*.estamos.iguales.com iguales.com *.iguales.com *.son.iguales.com *.ww1.iguales.com *.ww16.iguales.com

*.aws.oxygenvision.com *.cdn-dev.oxygenvision.com *.lab.oxygenvision.com oxygenvision.com *.oxygenvision.com *.rds.oxygenvision.com *.vdi.oxygenvision.com

*.app.pagesage.xyz *.d.pagesage.xyz *.demo.pagesage.xyz *.gquuj7zfpd.pagesage.xyz *.n09gumzweq1si09b.pagesage.xyz pagesage.xyz *.pagesage.xyz *.wp.pagesage.xyz *.ww25.pagesage.xyz *.ww38.pagesage.xyz *.www.pagesage.xyz

*.46hz.tf1eak.click *.dlht.tf1eak.click *.f4o9.tf1eak.click *.gvtb.tf1eak.click *.l23a.tf1eak.click *.n9cq.tf1eak.click *.pb5d.tf1eak.click *.q9lp.tf1eak.click tf1eak.click *.tf1eak.click *.tvlo.tf1eak.click *.vwtblxu9h.tf1eak.click *.wagt.tf1eak.click

vacanzeromantiche.com *.vacanzeromantiche.com

veraiq.com *.veraiq.com

videoinchiesta.com *.videoinchiesta.com

*.authen1686.vuaclub.tv *.common.vuaclub.tv *.login.vuaclub.tv *.portal.vuaclub.tv vuaclub.tv *.vuaclub.tv

vzbbf.pro *.vzbbf.pro

whopd.shop *.whopd.shop

wingede.college *.wingede.college

wisnu123id.com *.wisnu123id.com

*.office168.xbetx.vip *.sitemap.xbetx.vip xbetx.vip *.xbetx.vip

xn--9kq09eotgdmtijh.com *.xn--9kq09eotgdmtijh.com

xn--9kq09eotghokm9i.xyz *.xn--9kq09eotghokm9i.xyz

xn--watt-t29fi4r831j.xyz *.xn--watt-t29fi4r831j.xyz

xxxparis.com *.xxxparis.com

xynqo.shop *.xynqo.shop

yry-icloud.cn *.yry-icloud.cn

ztbsd.tv *.ztbsd.tv