SSL Certificate Analysis for gen.com.au - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=lovebear.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 23, 2026

Valid Until

August 21, 2026 69 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

E5:17:D9:48:F4:BA:CE:84:52:3C:35:40:D2:89:C0:F8:15:C6:AF:61:FB:16:56:B8:4F:9F:FC:C4:78:46:C0:43

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

gen.com.au *.gen.com.au *.netmaker.gen.com.au *.notebooktamiri.gen.com.au *.rtl.gen.com.au *.ww25.gen.com.au

Other domains in certificate

320ytmp3.cc *.320ytmp3.cc *.ww25.320ytmp3.cc

75572.bet *.75572.bet

bbcnews.click *.bbcnews.click *.w.bbcnews.click *.ww25.bbcnews.click

bellocci.it *.bellocci.it *.correu.bellocci.it *.random.bellocci.it *.remote.bellocci.it

*.admin.dibantumbah8.click dibantumbah8.click *.dibantumbah8.click

*.app.exploreroutes.org *.backup.exploreroutes.org exploreroutes.org *.exploreroutes.org *.members.exploreroutes.org *.staging.exploreroutes.org *.testing.exploreroutes.org *.uat.exploreroutes.org

*.32.flicckr.com *.3a2c6f76-6e05-4b5c-abee-dd23c5c78bdb.flicckr.com *.account.flicckr.com *.admin.flicckr.com *.cb0ecb44-cc73-4993-bf74-dee290e2176f.flicckr.com *.crm.flicckr.com flicckr.com *.flicckr.com *.jobs.flicckr.com *.m.flicckr.com *.magento.flicckr.com *.members.flicckr.com *.old.flicckr.com *.staging.flicckr.com *.uat.flicckr.com *.ww3.flicckr.com *.ww38.flicckr.com

*.baidu.hds-streaming-vf.site *.bip.hds-streaming-vf.site *.docs.hds-streaming-vf.site hds-streaming-vf.site *.hds-streaming-vf.site *.m.hds-streaming-vf.site *.mail.hds-streaming-vf.site *.media.hds-streaming-vf.site *.myhome.hds-streaming-vf.site *.rdpress.hds-streaming-vf.site *.static.hds-streaming-vf.site *.store.hds-streaming-vf.site *.testing.hds-streaming-vf.site *.www7b.hds-streaming-vf.site

lmn39.sbs *.lmn39.sbs *.ww38.lmn39.sbs

*.2024.lovebear.it lovebear.it *.lovebear.it

megatools.co *.megatools.co *.sitemaps.megatools.co

*.mta.omeganove.it omeganove.it *.omeganove.it

pedantic.au *.pedantic.au *.ww25.pedantic.au

*.analytic.servicecar.it *.remote.servicecar.it servicecar.it *.servicecar.it *.staging.servicecar.it *.uat.servicecar.it *.www.servicecar.it

*.cpcontacts.spinrise-casino.tech spinrise-casino.tech *.spinrise-casino.tech

timeboard.com.au *.timeboard.com.au *.ww16.timeboard.com.au