SSL Certificate Analysis for dategence.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=3qquu.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 11, 2026

Valid Until

August 09, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A8:64:5C:20:24:EC:DB:D0:2E:7D:BA:2C:F2:29:36:A1:B3:E5:14:A4:67:33:1C:A9:E8:F1:A7:88:7B:5F:63:6C

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

dategence.com *.dategence.com

Other domains in certificate

13186.my *.13186.my

37440.ac *.37440.ac

379837.pizza *.379837.pizza

383292.co *.383292.co

39038.one *.39038.one

3qquu.com *.3qquu.com *.com.3qquu.com *.ml.3qquu.com *.top.3qquu.com

52896.loan *.52896.loan

60195.cc *.60195.cc

6111106.cyou *.6111106.cyou

61659.loan *.61659.loan

61660.loan *.61660.loan

61661.loan *.61661.loan

61664.loan *.61664.loan

66275.mobi *.66275.mobi

68532.asia *.68532.asia

6aak.cc *.6aak.cc

8166vv77.com *.8166vv77.com

8166ww22.com *.8166ww22.com

8177ww11.com *.8177ww11.com

databaseaiq.com *.databaseaiq.com

datingaq.com *.datingaq.com

dddqp.bid *.dddqp.bid

deppseek.net *.deppseek.net

f64722507.com *.f64722507.com

fhk35.icu *.fhk35.icu

h7vuszrgiy2v.com *.h7vuszrgiy2v.com

hejiso.pro *.hejiso.pro

homelnvestors.com *.homelnvestors.com

hqyl168.xyz *.hqyl168.xyz

iddpoker.com *.iddpoker.com

increaseyourgrowth.com *.increaseyourgrowth.com

indiakt.cfd *.indiakt.cfd

itsrimlacapital.com *.itsrimlacapital.com

lalelilolu.org *.lalelilolu.org

lduek.auction *.lduek.auction

legacyquest948.shop *.legacyquest948.shop

maplemcp.com *.maplemcp.com

maxgreenwald.io *.maxgreenwald.io *.www.maxgreenwald.io

pesa1000.app *.pesa1000.app

pureawaken.info *.pureawaken.info

sitgca.com *.sitgca.com

solarmodul-konstrukteur.today *.solarmodul-konstrukteur.today