SSL Certificate Analysis for creataspace.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=adderallmeds.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 11, 2026

Valid Until

May 12, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

18:2A:7D:C7:4F:D9:E6:D8:97:F5:7D:F7:9B:F0:77:8B:E7:37:BF:56:91:73:82:1B:D8:95:1E:00:F9:6B:A8:32

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

creataspace.com *.creataspace.com

Other domains in certificate

11k.bet *.11k.bet

301garage.com *.301garage.com

834aa.com *.834aa.com

adderallmeds.com *.adderallmeds.com *.com.adderallmeds.com *.mail.adderallmeds.com

atituderedes.com.br *.atituderedes.com.br

bigcinematv.site *.bigcinematv.site *.br.bigcinematv.site *.grog1.bigcinematv.site *.mu.bigcinematv.site *.ns1.bigcinematv.site *.visual.bigcinematv.site

biodanzas.com *.biodanzas.com

bookingfaxnavia.com *.bookingfaxnavia.com

classicvacationretreats.live *.classicvacationretreats.live

clickerticker.com *.clickerticker.com

coastalweddingstheme.beauty *.coastalweddingstheme.beauty

courpiere.com *.courpiere.com

csu9zwe.top *.csu9zwe.top

czkqtjz234.vip *.czkqtjz234.vip

dantocvietnam.com *.dantocvietnam.com

*.cpanel.hdmckuwsmp.com hdmckuwsmp.com *.hdmckuwsmp.com *.mail.hdmckuwsmp.com *.mandar.hdmckuwsmp.com *.one.hdmckuwsmp.com *.sitemap.hdmckuwsmp.com *.webmail.hdmckuwsmp.com *.www.hdmckuwsmp.com

*.admin.jaxie.com *.app.jaxie.com *.backup.jaxie.com *.campanha.jaxie.com *.dashboard.jaxie.com *.demo.jaxie.com *.dev.jaxie.com *.ftp.jaxie.com *.hostmaster.jaxie.com jaxie.com *.jaxie.com *.mail.jaxie.com *.mailer.jaxie.com *.mailout.jaxie.com *.marketing.jaxie.com *.qa.jaxie.com *.rustore.jaxie.com *.s.jaxie.com *.secure.jaxie.com *.sharepoint.jaxie.com *.sitemap.jaxie.com *.sitemaps.jaxie.com *.staging.jaxie.com *.stg.jaxie.com *.test.jaxie.com *.v1.jaxie.com *.v2.jaxie.com *.web.jaxie.com *.ww1.jaxie.com

lawer.ca *.lawer.ca

*.backend.ohioan.info *.dns.ohioan.info ohioan.info *.ohioan.info *.ww25.ohioan.info

the-trackr.co *.the-trackr.co

themagicbarber.com.br *.themagicbarber.com.br

wellnessvacationretreat.live *.wellnessvacationretreat.live