SSL Certificate Analysis for dev.kingdom777.ceo - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gossipilluminate.xyz

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 20, 2026

Valid Until

August 18, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2D:DF:55:52:2A:D1:B3:12:EF:DF:C2:A8:F2:E9:E5:AF:06:00:7D:FB:58:43:0F:7B:C3:63:52:F4:07:3E:DE:19

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

kingdom777.ceo *.kingdom777.ceo *.autodiscover.kingdom777.ceo *.c4fe772f-f76f-4f1e-98e5-963b72f46fb9.kingdom777.ceo *.dev.kingdom777.ceo

Other domains in certificate

32532.cc *.32532.cc *.mail.32532.cc

agreenbank.com *.agreenbank.com *.cloud.agreenbank.com *.rd.agreenbank.com *.rds.agreenbank.com *.remote.agreenbank.com

atvauctions.com *.atvauctions.com *.cgi.atvauctions.com *.gskvz7.atvauctions.com *.redbusprimarydns.atvauctions.com

cordwrap.com *.cordwrap.com *.wildcard.cordwrap.com

*.cpanel.dentalassistantcareers.com dentalassistantcareers.com *.dentalassistantcareers.com *.mx.dentalassistantcareers.com *.webdisk.dentalassistantcareers.com *.webmail.dentalassistantcareers.com *.www.dentalassistantcareers.com

*.5f9c3016-04cf-47c4-9f9c-ac0eaf285cbe.gossipilluminate.xyz *.app.gossipilluminate.xyz *.assets.gossipilluminate.xyz *.d.gossipilluminate.xyz *.dashboard.gossipilluminate.xyz *.dn930.gossipilluminate.xyz gossipilluminate.xyz *.gossipilluminate.xyz *.he00g.gossipilluminate.xyz *.jcbdvitm.gossipilluminate.xyz *.marketing.gossipilluminate.xyz *.mlzso3.gossipilluminate.xyz *.mosltavj.gossipilluminate.xyz *.shop.gossipilluminate.xyz *.test.gossipilluminate.xyz

hertz.network *.hertz.network

*.hostmaster.marcc.cc *.m.marcc.cc marcc.cc *.marcc.cc *.random.marcc.cc *.www.marcc.cc

*.api.neurovea.com *.app.neurovea.com *.assets.neurovea.com *.members.neurovea.com neurovea.com *.neurovea.com *.qhbnzrds.neurovea.com *.rd.neurovea.com *.rds.neurovea.com *.remote.neurovea.com

pelisforte.es *.pelisforte.es

*.console.serahive.in serahive.in *.serahive.in

*.54ph5k.signup.onl *.admin.signup.onl *.api.signup.onl *.app.signup.onl *.assets.signup.onl *.autoconfig.signup.onl *.autodiscover.signup.onl *.demo.signup.onl *.dev.signup.onl *.gitlab.signup.onl *.rdp.signup.onl signup.onl *.signup.onl *.sitemaps.signup.onl *.ww12.signup.onl

sksaurav.com *.sksaurav.com *.www.sksaurav.com

viclouds.com *.viclouds.com

*.ww5.wwwbackcountry.com wwwbackcountry.com *.wwwbackcountry.com