SSL Certificate Analysis for app.dj768.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=kuusatsu.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 23, 2026

Valid Until

September 21, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A4:19:76:51:1A:8A:9A:E9:2F:58:4E:03:25:D9:C6:8A:8B:32:3A:8E:7B:6E:1B:18:4D:B2:AA:F4:A7:A6:C8:D1

Alternative Names

73 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

73 domains

dj768.com *.dj768.com *.5lv.dj768.com *.706.dj768.com *.aomenduqiupingtai.dj768.com *.app.dj768.com *.boyingyazhou.dj768.com *.dubosongcaijin.dj768.com *.m.dj768.com *.mp3.dj768.com *.probiller.dj768.com *.wma.dj768.com *.ww38.dj768.com *.www.dj768.com *.xinyuhaodexianjinqipai.dj768.com

Other domains in certificate

bebekpakeko.com *.bebekpakeko.com *.webdisk.bebekpakeko.com *.ww25.bebekpakeko.com *.ww38.bebekpakeko.com *.www.bebekpakeko.com

*.api.coinegg.vip *.app.coinegg.vip coinegg.vip *.coinegg.vip *.ma.coinegg.vip *.smtp.coinegg.vip *.support.coinegg.vip *.top.coinegg.vip *.trade.coinegg.vip *.ww25.coinegg.vip

kuusatsu.com *.kuusatsu.com

mbaexcel.com *.mbaexcel.com

*.cdn.mytorrents.org *.img.mytorrents.org *.ipv6.mytorrents.org *.mobile.mytorrents.org mytorrents.org *.mytorrents.org

poker2.it *.poker2.it

southwatch.org *.southwatch.org

*.0bdbd177-21c3-4987-9265-0d8bdaa19a72.wayhop.info *.app.wayhop.info *.assets.wayhop.info *.at.wayhop.info *.cl.wayhop.info *.cygr.wayhop.info *.cz.wayhop.info *.de.wayhop.info *.dev.wayhop.info *.it.wayhop.info *.pe.wayhop.info *.pl.wayhop.info *.sifvpexuj4.wayhop.info *.sitemap.wayhop.info *.sitemaps.wayhop.info *.ug.wayhop.info wayhop.info *.wayhop.info *.ww25.wayhop.info *.ww38.wayhop.info *.z7xqghfunw.wayhop.info

*.00m84kkvsw.zexvt.xyz *.b5ee7q5xrqdojwjc50.zexvt.xyz *.eejvh2w174.zexvt.xyz *.t7pjaixx40.zexvt.xyz *.wxtkfbkda8.zexvt.xyz zexvt.xyz *.zexvt.xyz