SSL Certificate Analysis for gen.ccgen.tech - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=livani.studio

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

December 18, 2025

Valid Until

March 18, 2026 41 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BE:49:69:57:50:17:85:F4:F5:22:00:80:66:C1:26:36:41:E9:DE:80:DB:DF:2C:88:79:92:A5:A7:0C:0F:1F:EC

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

ccgen.tech *.ccgen.tech *.bi.ccgen.tech *.ci.ccgen.tech *.demo.ccgen.tech *.download.ccgen.tech *.gen.ccgen.tech *.generate.ccgen.tech *.indianbinner.ccgen.tech *.m.ccgen.tech *.qa.ccgen.tech *.s.ccgen.tech *.staging-pipeline.ccgen.tech *.webmail.ccgen.tech *.ww25.ccgen.tech

Other domains in certificate

dcsc.ltd *.dcsc.ltd *.login.dcsc.ltd *.printportal.dcsc.ltd

*.ftp.livani.studio livani.studio *.livani.studio *.pop.livani.studio *.pr.livani.studio

*.admin.nickoloden.com *.beta.nickoloden.com *.kca.nickoloden.com nickoloden.com *.nickoloden.com *.production.nickoloden.com *.support.nickoloden.com *.ww1.nickoloden.com

*.blog.savings.guru *.for.savings.guru *.help.savings.guru *.instagram.savings.guru *.interior.savings.guru *.pre.savings.guru savings.guru *.savings.guru *.united.savings.guru

*.admin.sydorenko.online *.backend.sydorenko.online *.ci.sydorenko.online *.cicd.sydorenko.online *.qa.sydorenko.online sydorenko.online *.sydorenko.online

*.alpha.travel-fx.co.uk *.analytics.travel-fx.co.uk *.autoconfig.travel-fx.co.uk *.beta.travel-fx.co.uk *.bi.travel-fx.co.uk *.ci.travel-fx.co.uk *.cicd.travel-fx.co.uk *.dash.travel-fx.co.uk *.demo.travel-fx.co.uk *.dev.travel-fx.co.uk *.development.travel-fx.co.uk *.hotfix.travel-fx.co.uk *.insights.travel-fx.co.uk *.integration.travel-fx.co.uk *.jenkins.travel-fx.co.uk *.mail.travel-fx.co.uk *.mx.travel-fx.co.uk *.pipeline.travel-fx.co.uk *.poc.travel-fx.co.uk *.preprod.travel-fx.co.uk *.preview.travel-fx.co.uk *.prod.travel-fx.co.uk *.production-visualize.travel-fx.co.uk *.production.travel-fx.co.uk *.qa.travel-fx.co.uk *.random.travel-fx.co.uk *.report.travel-fx.co.uk *.reporting.travel-fx.co.uk *.sandbox.travel-fx.co.uk *.stag.travel-fx.co.uk *.superset.travel-fx.co.uk *.test.travel-fx.co.uk *.transport.travel-fx.co.uk travel-fx.co.uk *.travel-fx.co.uk *.uat.travel-fx.co.uk *.visualizations.travel-fx.co.uk *.visualize.travel-fx.co.uk *.viz.travel-fx.co.uk *.wp.travel-fx.co.uk *.ww.travel-fx.co.uk