SSL Certificate Analysis for admin.pippit.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=lottopcsoresulttoday.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

May 30, 2026

Valid Until

August 28, 2026 79 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B5:74:B6:4E:A6:BC:3B:F1:E6:25:A5:85:F6:FA:B0:FF:6C:F9:9A:AC:82:EC:19:30:50:74:9A:EA:52:97:19:92

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

pippit.net *.pippit.net *.a8cdc269-73ab-4ba0-9343-c71ff0b855ac.pippit.net *.admin.pippit.net *.app.pippit.net *.assets.pippit.net *.cloud.pippit.net *.demo.pippit.net *.dev.pippit.net *.members.pippit.net *.rd.pippit.net *.rdweb.pippit.net *.remote.pippit.net

Other domains in certificate

*.assets.karmicastrology.in karmicastrology.in *.karmicastrology.in

lottopcsoresulttoday.com *.lottopcsoresulttoday.com

*.assets.new88a8.com *.members.new88a8.com new88a8.com *.new88a8.com *.test.new88a8.com *.vpn.new88a8.com *.www.new88a8.com

*.4ac955a9-763c-4a44-8dd3-a57abd169d75.phimsex13.org *.accounts.phimsex13.org *.admin.phimsex13.org *.api.phimsex13.org *.app.phimsex13.org *.assets.phimsex13.org *.backup.phimsex13.org *.cbaa7153-a74f-41b5-a53f-85063fd23861.phimsex13.org *.cdn.phimsex13.org *.dashboard.phimsex13.org *.demo.phimsex13.org *.dev.phimsex13.org *.gxnsmtponaweb.phimsex13.org *.home.phimsex13.org *.hostmaster.phimsex13.org *.m.phimsex13.org *.mail.phimsex13.org *.mailer.phimsex13.org *.mobile.phimsex13.org phimsex13.org *.phimsex13.org *.qa.phimsex13.org *.secure.phimsex13.org *.test.phimsex13.org *.v2.phimsex13.org *.wap.phimsex13.org *.web.phimsex13.org

*.admin.teapon.homes *.api.teapon.homes *.assets.teapon.homes *.demo.teapon.homes *.fcrmsi.teapon.homes teapon.homes *.teapon.homes *.www.teapon.homes

*.admin.toweliee.com *.adobe.toweliee.com *.app.toweliee.com *.babel.toweliee.com *.backblaze.toweliee.com *.bmc.toweliee.com *.cms.toweliee.com *.correo.toweliee.com *.dev.toweliee.com *.f3900e8a-6cf4-4e22-8882-ed53d23ef21a.toweliee.com *.ffdec1e7-2f9b-478a-a8b9-c72ac1df5bc9.toweliee.com *.hostmaster.toweliee.com *.m.toweliee.com toweliee.com *.toweliee.com *.ww1.toweliee.com

*.884444.www5723.cn *.apk.www5723.cn *.baoyutv555.www5723.cn *.co.www5723.cn *.com.www5723.cn *.loan.www5723.cn *.me.www5723.cn *.saohuav.www5723.cn *.tv.www5723.cn *.vip.www5723.cn *.work.www5723.cn *.world.www5723.cn www5723.cn *.www5723.cn