SSL Certificate Analysis for controller.trong.bio - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=flicker.au

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 28, 2026

Valid Until

July 27, 2026 62 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

9B:45:BB:4E:CB:4C:AB:84:32:12:CD:2A:5F:34:E7:67:E3:F8:C6:7E:16:4E:69:29:0B:7A:27:04:E7:C5:01:2D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

trong.bio *.trong.bio *.ww38.trong.bio

Other domains in certificate

2024biqugeallaboutthesale.world *.2024biqugeallaboutthesale.world

animeid.cc *.animeid.cc *.docs.animeid.cc *.ww12.animeid.cc *.www.animeid.cc

bestcatalogues.co.uk *.bestcatalogues.co.uk *.ww25.bestcatalogues.co.uk *.www.bestcatalogues.co.uk

btcmoney184.com *.btcmoney184.com

communityresort.com *.communityresort.com *.mg.communityresort.com *.ww38.communityresort.com

dccoach.com *.dccoach.com

deskshop.pro *.deskshop.pro *.ww01.deskshop.pro

diethourmax.online *.diethourmax.online

*.dbb7cd78-9565-49b2-9a28-93d8727d1182.erothotd.co *.emv1.erothotd.co erothotd.co *.erothotd.co *.smtp.erothotd.co *.test.erothotd.co *.wildcard.erothotd.co *.www.erothotd.co

fantasystockings.com *.fantasystockings.com *.ww38.fantasystockings.com

flicker.au *.flicker.au

hayesdynotech.co.uk *.hayesdynotech.co.uk

highrise.net *.highrise.net

*.hostmaster.jgm.in *.imap.jgm.in jgm.in *.jgm.in *.m.jgm.in *.mail.jgm.in *.nsap.jgm.in *.remote.jgm.in *.sitemap.jgm.in *.vpn.jgm.in *.webvpn.jgm.in *.ww50.jgm.in

*.council.lithgow.com.au lithgow.com.au *.lithgow.com.au *.random.lithgow.com.au *.ww25.lithgow.com.au

*.mail.monostudiope.com monostudiope.com *.monostudiope.com

mysticgardenlandscapes.xyz *.mysticgardenlandscapes.xyz *.osldc.mysticgardenlandscapes.xyz

*.m.nordic-chic.com *.mail.nordic-chic.com nordic-chic.com *.nordic-chic.com

*.hostmaster.quisqueya.it quisqueya.it *.quisqueya.it *.www.quisqueya.it

rtpscatter.store *.rtpscatter.store *.webmail.rtpscatter.store

*.t.ucddirectory.com ucddirectory.com *.ucddirectory.com

*.comune.wfwf322.com wfwf322.com *.wfwf322.com *.ww38.wfwf322.com

zhaoxianlan.cn *.zhaoxianlan.cn

*.www.zone-telechargement.id zone-telechargement.id *.zone-telechargement.id