SSL Certificate Analysis for api.adscode.top - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=61450.lgbt

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 20, 2026

Valid Until

August 18, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F2:2F:90:C9:A8:8A:70:87:E8:73:C8:67:8A:66:82:EB:DB:8C:EE:C9:0A:9B:59:3A:FD:A0:88:23:5C:43:03:88

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

adscode.top *.adscode.top *.alvdsmembers.adscode.top *.api.adscode.top *.app.adscode.top *.d.adscode.top *.dev.adscode.top *.e6z7f8.adscode.top *.test.adscode.top *.www.adscode.top

Other domains in certificate

202aaa125.top *.202aaa125.top

61450.lgbt *.61450.lgbt

933883a6.buzz *.933883a6.buzz

*.327249c6-e827-4255-9e77-d6e77b7176f4.appso.pro appso.pro *.appso.pro *.random.appso.pro *.sitemaps.appso.pro *.ww25.appso.pro *.www.appso.pro

autoinusrance.com *.autoinusrance.com *.www.autoinusrance.com

biblicalworldview.ca *.biblicalworldview.ca *.www.biblicalworldview.ca

binnsconstruction.com *.binnsconstruction.com *.remote.binnsconstruction.com *.xn--zhhbinawo-95a2o93b.binnsconstruction.com

*.aomits.dancingwiththequeers.com *.app.dancingwiththequeers.com dancingwiththequeers.com *.dancingwiththequeers.com *.dev.dancingwiththequeers.com *.imagin-accesso.dancingwiththequeers.com *.old.dancingwiththequeers.com *.remote.dancingwiththequeers.com *.sharepoint.dancingwiththequeers.com *.www.dancingwiththequeers.com

dashfivaulted.info *.dashfivaulted.info *.pv3ke5.dashfivaulted.info

ebooksduck.com *.ebooksduck.com *.ww25.ebooksduck.com

getyourbabe.net *.getyourbabe.net

juztice.com *.juztice.com *.www.juztice.com

*.hpufge.kanlikaya.info kanlikaya.info *.kanlikaya.info *.sitemaps.kanlikaya.info

laylasport.pl *.laylasport.pl

magicxclass.com *.magicxclass.com *.yfjvkv.magicxclass.com

*.app.proofofblog.com *.assets.proofofblog.com *.dev.proofofblog.com proofofblog.com *.proofofblog.com *.rustore.proofofblog.com

*.pay.sc-grow.com sc-grow.com *.sc-grow.com

*.alpha.sidehustle.agency sidehustle.agency *.sidehustle.agency

*.cicd.teengirlsvideos.com *.demo.teengirlsvideos.com *.mail.teengirlsvideos.com *.staging.teengirlsvideos.com teengirlsvideos.com *.teengirlsvideos.com *.ww16.teengirlsvideos.com *.ww38.teengirlsvideos.com *.www.teengirlsvideos.com

*.m.voyant.org voyant.org *.voyant.org

*.cpanel.winecellarstock.com winecellarstock.com *.winecellarstock.com