SSL Certificate Analysis for ewvd.micriosoft.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=llmandme.info

Issuer

C=US, O=Let's Encrypt, CN=YR1

Valid From

June 12, 2026

Valid Until

September 10, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

65:0D:B4:68:A4:31:94:F3:3A:01:65:3B:B9:00:56:7A:FD:BB:7C:32:05:20:23:29:2E:FC:FB:8A:90:71:D5:A4

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

micriosoft.com *.micriosoft.com *.activate.micriosoft.com *.auth.micriosoft.com *.cloud.micriosoft.com *.communication.micriosoft.com *.dotnet.micriosoft.com *.ewvd.micriosoft.com *.exchange.micriosoft.com *.login.micriosoft.com *.manage.micriosoft.com *.partner.micriosoft.com *.teams.micriosoft.com *.wvd.micriosoft.com

Other domains in certificate

advercash.net *.advercash.net *.staging.advercash.net *.uat.advercash.net *.ww38.advercash.net

*.admin.boor.it *.app.boor.it *.backend.boor.it boor.it *.boor.it *.demo.boor.it *.hostmaster.boor.it *.mail.boor.it *.superset.boor.it *.visual.boor.it *.webmail.boor.it

*.api.digimento.com *.archive.digimento.com *.autodiscover.digimento.com digimento.com *.digimento.com *.mx.digimento.com

*.0ba34215-616e-4025-b516-e8a4f95231ae.llmandme.info *.3d912ac8-3f3b-4c29-8727-36f9a7a6c80b.llmandme.info *.a.llmandme.info *.api.llmandme.info *.app.llmandme.info *.dev.llmandme.info llmandme.info *.llmandme.info *.mail.llmandme.info *.members.llmandme.info *.staging.llmandme.info *.test.llmandme.info *.uat.llmandme.info *.vfa7dk.llmandme.info

*.c9cbf2e8-b44e-43ba-b7f9-8024f53c0264.slot11118.xyz *.dev.slot11118.xyz *.mailer.slot11118.xyz *.pmxmfdev.slot11118.xyz slot11118.xyz *.slot11118.xyz *.stg.slot11118.xyz *.uat.slot11118.xyz *.web.slot11118.xyz

*.dc6b520c-b049-4e5c-bae6-afe5fccec52a.stomind.me stomind.me *.stomind.me *.www.stomind.me

*.com.thekingiszy.com *.dev.thekingiszy.com *.mail1.thekingiszy.com thekingiszy.com *.thekingiszy.com *.wpt.thekingiszy.com

*.anyconnect.woodlawn.net *.app.woodlawn.net *.apps.woodlawn.net *.ciscoasa.woodlawn.net *.cloudapp.woodlawn.net *.email.woodlawn.net *.istservices.woodlawn.net *.mobileconnect.woodlawn.net *.mx.woodlawn.net *.online.woodlawn.net *.ra.woodlawn.net *.rds.woodlawn.net *.server.woodlawn.net *.vpn.woodlawn.net woodlawn.net *.woodlawn.net *.xapp.woodlawn.net

*.kuchdorlagay.zeromonikalog.info *.ww25.zeromonikalog.info zeromonikalog.info *.zeromonikalog.info