SSL Certificate Analysis for admin.acquisitionbonds.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=casinomanga.net

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 20, 2026

Valid Until

August 18, 2026 72 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

17:A5:75:F2:86:86:FE:BE:9E:AD:00:05:1A:65:26:C0:AD:3A:4E:C9:D7:B9:99:28:84:25:A0:B1:4E:63:28:7A

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

acquisitionbonds.com *.acquisitionbonds.com *.admin.acquisitionbonds.com *.app.acquisitionbonds.com *.demo.acquisitionbonds.com *.hostmaster.acquisitionbonds.com *.staging.acquisitionbonds.com *.www.acquisitionbonds.com

Other domains in certificate

9999vvv.cc *.9999vvv.cc *.www.9999vvv.cc

agenslotjoker.com *.agenslotjoker.com *.www.agenslotjoker.com

ahczcy.com *.ahczcy.com *.q389i2oyu.ahczcy.com *.www.ahczcy.com

augmentin.media *.augmentin.media *.buyer-api.augmentin.media *.common-api.augmentin.media *.mail.augmentin.media *.remote.augmentin.media *.uat.augmentin.media *.wildcard.augmentin.media *.www.augmentin.media

brm.com.pl *.brm.com.pl *.git.brm.com.pl *.gitlab.brm.com.pl *.m.brm.com.pl *.mail.brm.com.pl *.old.brm.com.pl *.shop.brm.com.pl *.sitemaps.brm.com.pl *.store.brm.com.pl *.test.brm.com.pl *.ww16.brm.com.pl *.ww25.brm.com.pl *.www.brm.com.pl

casinomanga.net *.casinomanga.net *.www.casinomanga.net

clearhub.co *.clearhub.co *.www.clearhub.co

directamplifyygem.info *.directamplifyygem.info *.qwpdci.directamplifyygem.info

ionicpaint.com *.ionicpaint.com *.odor.ionicpaint.com *.www.ionicpaint.com

*.admin.klasa.it *.analytics.klasa.it *.backend.klasa.it *.board.klasa.it *.dash.klasa.it *.demo.klasa.it *.dev.klasa.it *.forum.klasa.it *.hostmaster.klasa.it *.internal.klasa.it klasa.it *.klasa.it *.owa.klasa.it *.superset.klasa.it

*.admin.niku.it *.api.niku.it *.backend.niku.it *.bi.niku.it *.dash.niku.it *.dashs.niku.it *.hostmaster.niku.it niku.it *.niku.it *.redash.niku.it *.superset.niku.it

places.coffee *.places.coffee *.sitemap.places.coffee

torrentreel96.site *.torrentreel96.site

trade-master.site *.trade-master.site *.wwww.trade-master.site

*.shop.zaphonline.com zaphonline.com *.zaphonline.com