SSL Certificate Analysis for amazonliu.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=edutechuniverse.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 18, 2026

Valid Until

May 19, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

76:1B:91:84:6F:68:CB:CB:6A:4F:0D:99:BB:91:3E:A0:84:C5:65:F6:93:C6:18:8B:8A:06:5B:45:8A:9E:C6:94

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

amazonliu.com *.amazonliu.com *.erc.amazonliu.com *.ww38.amazonliu.com

Other domains in certificate

bbw-box.com *.bbw-box.com *.cpanel.bbw-box.com *.cpcontacts.bbw-box.com *.lifww1.bbw-box.com *.ns2.bbw-box.com *.purina.bbw-box.com *.webdisk.bbw-box.com *.webmail.bbw-box.com *.www.bbw-box.com *.xxx.bbw-box.com

*.admin.chiusanodasti.com chiusanodasti.com *.chiusanodasti.com

*.backend.domaindiesel.com domaindiesel.com *.domaindiesel.com *.vpn.domaindiesel.com

edutechuniverse.com *.edutechuniverse.com

frati-facility.com *.frati-facility.com

izleorg4.org *.izleorg4.org *.webmail.izleorg4.org

kazowk.info *.kazowk.info *.login.kazowk.info

kri5amazon.com *.kri5amazon.com *.ww25.kri5amazon.com

*.crm.mishkah.com *.gestao.mishkah.com *.lime.mishkah.com *.m.mishkah.com mishkah.com *.mishkah.com *.sitemap.mishkah.com *.sitemaps.mishkah.com *.staging.mishkah.com *.ww16.mishkah.com *.ww25.mishkah.com *.ww38.mishkah.com

qnys2.app *.qnys2.app

*.ftp.ryr.fi *.mail.ryr.fi ryr.fi *.ryr.fi *.vpn.ryr.fi

taxiquangngai365.click *.taxiquangngai365.click

*.m.ukcashback.com *.portal.ukcashback.com *.rds.ukcashback.com *.rds1.ukcashback.com *.rdweb.ukcashback.com *.remote.ukcashback.com *.test.ukcashback.com ukcashback.com *.ukcashback.com *.vpn.ukcashback.com *.wildcard.ukcashback.com *.ww25.ukcashback.com *.ww43.ukcashback.com

*.ac.uotmail.com *.alejanti4h1anakycoco.uotmail.com *.apdomo.uotmail.com *.co.uotmail.com *.h.uotmail.com *.h786dsnzoo.uotmail.com *.hotmm.uotmail.com *.i.uotmail.com *.jobui.uotmail.com *.l.uotmail.com *.mail.uotmail.com *.meta.uotmail.com *.pjoa.uotmail.com *.pub.uotmail.com *.uirtana.uotmail.com uotmail.com *.uotmail.com *.v.uotmail.com

*.autodiscover.wahanatoto88.net wahanatoto88.net *.wahanatoto88.net