SSL Certificate Analysis for dev.amazonas.bet - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=10789.loan

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 21, 2026

Valid Until

July 20, 2026 57 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BA:B4:4F:54:51:BE:7D:D7:27:2F:5F:71:B8:1F:60:E0:F9:A3:09:87:6F:35:71:EA:14:EB:D9:44:BE:6B:6A:B8

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

amazonas.bet *.amazonas.bet

Other domains in certificate

10789.loan *.10789.loan

10792.loan *.10792.loan

10793.loan *.10793.loan

10797.loan *.10797.loan

10799.loan *.10799.loan

1113jys301.top *.1113jys301.top

14529.gdn *.14529.gdn

262445.today *.262445.today

305835.top *.305835.top

31069.mobi *.31069.mobi

4015.win *.4015.win

4016.win *.4016.win

409451-501erf-05.com *.409451-501erf-05.com

517183.cn *.517183.cn

51fuli1.top *.51fuli1.top

537435.cc *.537435.cc

589968a.buzz *.589968a.buzz

60nachla.com *.60nachla.com

788606.xyz *.788606.xyz

87558c24.cc *.87558c24.cc

8933.win *.8933.win

92044.top *.92044.top

935085.top *.935085.top

99dewaraja.com *.99dewaraja.com

a-z.how *.a-z.how

aeechat.com *.aeechat.com

aeehuman.com *.aeehuman.com

aitrustvoltra.com *.aitrustvoltra.com

alexandrias.net *.alexandrias.net

anime-squaree.cc *.anime-squaree.cc

apk138pgsoft.info *.apk138pgsoft.info

apk138pragmatic.info *.apk138pragmatic.info

evolvedagentic.com *.evolvedagentic.com

excursionvirtue.xyz *.excursionvirtue.xyz

findbestdatings.life *.findbestdatings.life

flyerspsp.com *.flyerspsp.com

ftsadeau.com *.ftsadeau.com

fundjourney.today *.fundjourney.today

g2-2018.org *.g2-2018.org

gaynesscr.com *.gaynesscr.com

getmyloanfast.sbs *.getmyloanfast.sbs

giga138pop.com *.giga138pop.com

global.cfd *.global.cfd

harmonicshift.net *.harmonicshift.net