SSL Certificate Analysis for dev.18by.vote - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=getexhausted.net

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 13, 2026

Valid Until

August 11, 2026 78 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

CF:8B:41:55:D8:5C:DA:6F:56:AA:FB:90:2C:7F:51:7F:16:13:FD:58:FE:76:F8:CA:4F:0A:FF:6A:9F:41:38:DC

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

18by.vote *.18by.vote *.mail.18by.vote *.poczta.18by.vote *.tor.18by.vote

Other domains in certificate

bootsbourbon.com *.bootsbourbon.com

candystores.de *.candystores.de *.ww11.candystores.de

*.cgcnrmembers.destinosia.com destinosia.com *.destinosia.com

dewy.info *.dewy.info *.ww38.dewy.info *.www.dewy.info

*.4xh2ce.foundamplifyycrown.info foundamplifyycrown.info *.foundamplifyycrown.info

getexhausted.net *.getexhausted.net

*.10888563-be5a-4f47-83e0-2d32089316ab.getloanhere.com *.api.getloanhere.com *.app.getloanhere.com *.backup.getloanhere.com *.beta.getloanhere.com *.blog.getloanhere.com *.crm.getloanhere.com *.demo.getloanhere.com *.dev.getloanhere.com *.dolibarr.getloanhere.com *.forum.getloanhere.com *.forums.getloanhere.com getloanhere.com *.getloanhere.com *.git.getloanhere.com *.help.getloanhere.com *.hostmaster.getloanhere.com *.metrics.getloanhere.com *.new.getloanhere.com *.old.getloanhere.com *.portal.getloanhere.com *.sitemap.getloanhere.com *.webdisk.getloanhere.com *.wiki.getloanhere.com

*.cn.kampanyamizvar.com *.demo.kampanyamizvar.com kampanyamizvar.com *.kampanyamizvar.com *.kb.kampanyamizvar.com *.members.kampanyamizvar.com *.proxy.kampanyamizvar.com *.uat.kampanyamizvar.com *.v4.kampanyamizvar.com *.ww12.kampanyamizvar.com

*.5vsj2k.onlypndigital.com onlypndigital.com *.onlypndigital.com

*.32.purspec.us *.forum.purspec.us purspec.us *.purspec.us

sistemaderifasoficial.online *.sistemaderifasoficial.online *.ww25.sistemaderifasoficial.online

*.mail.trypatentpronow.com *.track.trypatentpronow.com trypatentpronow.com *.trypatentpronow.com

*.5ixow3.upthena.fitness *.api.upthena.fitness *.backup.upthena.fitness *.bttgdweb.upthena.fitness *.dashboard.upthena.fitness *.dev.upthena.fitness *.mail.upthena.fitness *.marketing.upthena.fitness *.qa.upthena.fitness *.secure.upthena.fitness *.staging.upthena.fitness *.stg.upthena.fitness *.uat.upthena.fitness upthena.fitness *.upthena.fitness *.v1.upthena.fitness *.v2.upthena.fitness *.web.upthena.fitness *.yhvmflpz.upthena.fitness