SSL Certificate Analysis for dev.redpill.studio - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=zamb.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 03, 2026

Valid Until

July 02, 2026 40 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C1:1B:8C:F4:0E:DB:6C:43:FD:A2:1D:E1:F6:FC:94:76:6A:88:33:97:39:B0:FC:83:08:7C:D0:96:9D:56:9A:E3

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

redpill.studio *.redpill.studio *.dev.redpill.studio *.mail.redpill.studio *.privacypolicy.redpill.studio

Other domains in certificate

1414.com *.1414.com *.49.1414.com *.520.1414.com *.abc.1414.com *.acm.1414.com *.aeae.1414.com *.aqd.1414.com *.blog.1414.com *.con.1414.com *.gux.1414.com *.hihi.1414.com *.kk.1414.com *.lhs.1414.com *.lime.1414.com *.mise.1414.com *.pp.1414.com *.qq.1414.com *.xjxj.1414.com *.xyz.1414.com

*.airflow.asianporn.asia asianporn.asia *.asianporn.asia *.beta.asianporn.asia *.hostmaster.asianporn.asia *.sandbox.asianporn.asia *.std.asianporn.asia *.ww.asianporn.asia *.ww38.asianporn.asia *.www.asianporn.asia

auradynamics.xyz *.auradynamics.xyz *.mail.auradynamics.xyz *.ww25.auradynamics.xyz *.ww38.auradynamics.xyz

btcfree.online *.btcfree.online *.hmagyww38.btcfree.online *.mail.btcfree.online *.mail7.btcfree.online *.mx.btcfree.online *.pipeline.btcfree.online *.static.btcfree.online *.testing.btcfree.online *.webmail.btcfree.online *.ww25.btcfree.online *.ww38.btcfree.online

cali-skills.co *.cali-skills.co

debtcollectorsmelbourne.com.au *.debtcollectorsmelbourne.com.au

oceanlubvi.net *.oceanlubvi.net

*.mail.perdewetten.de perdewetten.de *.perdewetten.de *.sitemap.perdewetten.de *.sitemaps.perdewetten.de *.smtp.perdewetten.de *.webmail.perdewetten.de *.www.perdewetten.de

*.2a373088-ca3a-4823-9698-887f6b1523f6.tinyxxl.tech *.3.tinyxxl.tech *.c951cdc6-af1a-455b-a7e5-55b2080d26af.tinyxxl.tech *.hzcx3.tinyxxl.tech *.test.tinyxxl.tech tinyxxl.tech *.tinyxxl.tech *.voronezh.tinyxxl.tech *.www3.tinyxxl.tech

*.ak.zamb.com *.comune.zamb.com *.em.zamb.com *.ixf.zamb.com *.jiuyi.zamb.com *.kk.zamb.com *.m.zamb.com *.q.zamb.com *.sh.zamb.com *.u.zamb.com *.wo.zamb.com *.www.zamb.com zamb.com *.zamb.com