SSL Certificate Analysis for expertly.au - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=motionwavebrush.xyz

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 20, 2026

Valid Until

August 18, 2026 87 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

FA:15:5E:DA:24:E5:1D:67:ED:87:90:C1:C8:8E:AD:36:68:64:6B:10:C1:3A:6A:16:BA:23:CA:40:C5:8B:39:55

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

expertly.au *.expertly.au

Other domains in certificate

2way.com.au *.2way.com.au *.comune.2way.com.au

amazonas.bet *.amazonas.bet *.api.amazonas.bet *.backend.amazonas.bet *.dev.amazonas.bet *.flowiseai.amazonas.bet *.m.amazonas.bet *.notexistshostmaster.amazonas.bet *.remote.amazonas.bet

bitcoin88.biz *.bitcoin88.biz *.mc.bitcoin88.biz

calulatorsecret.com *.calulatorsecret.com *.newrm.calulatorsecret.com

*.aff6e6fc-f487-42e9-8a3b-3519b33ba177.cameracraft.art *.api.cameracraft.art *.app.cameracraft.art *.assets.cameracraft.art cameracraft.art *.cameracraft.art *.dev.cameracraft.art *.f2ew7g.cameracraft.art *.git.cameracraft.art *.test.cameracraft.art

colleen.au *.colleen.au

goblin-online-kino.top *.goblin-online-kino.top

growx.store *.growx.store

guangdu.site *.guangdu.site

*.citrix.imageframes.co.uk imageframes.co.uk *.imageframes.co.uk *.orgserver1.imageframes.co.uk *.server1.imageframes.co.uk *.www.imageframes.co.uk

kingwaydeutschland.de *.kingwaydeutschland.de

kinoferma.top *.kinoferma.top

kombucha-me.de *.kombucha-me.de

koreanz83.store *.koreanz83.store

koreanz88.store *.koreanz88.store

krua-thai-bremen.de *.krua-thai-bremen.de

*.api.lovebag.it *.app.lovebag.it lovebag.it *.lovebag.it *.metric.lovebag.it *.staging.lovebag.it *.supersets.lovebag.it

*.jobs.mealdeliveryhub.com mealdeliveryhub.com *.mealdeliveryhub.com *.mldh1.mealdeliveryhub.com *.www.mealdeliveryhub.com

*.aowpq.motionwavebrush.xyz *.b5hyr.motionwavebrush.xyz *.kac0t.motionwavebrush.xyz *.kwid9.motionwavebrush.xyz motionwavebrush.xyz *.motionwavebrush.xyz *.oahlw.motionwavebrush.xyz *.uugt9.motionwavebrush.xyz

ocutccucqv270425y8.cfd *.ocutccucqv270425y8.cfd

ornelsen.de *.ornelsen.de

pet-adoptions-space.sbs *.pet-adoptions-space.sbs

socratic.store *.socratic.store

startwithabreak.com *.startwithabreak.com

*.hostmaster.twinkie.it twinkie.it *.twinkie.it *.www.twinkie.it