SSL Certificate Analysis for jjjsecurity.top - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=74719.win

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 04, 2026

Valid Until

August 02, 2026 71 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

66:1B:6D:64:5F:86:67:E2:54:EE:F0:30:81:B2:9B:81:17:AA:0D:AF:D5:04:1F:5E:50:42:8F:1E:51:7D:9D:0F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

jjjsecurity.top *.jjjsecurity.top

Other domains in certificate

222695.blog *.222695.blog

3-commas.com *.3-commas.com

329952.xyz *.329952.xyz

45593.top *.45593.top

67414.my *.67414.my

67655.one *.67655.one

6860.one *.6860.one

74719.win *.74719.win

80519.win *.80519.win

9526nnn.xyz *.9526nnn.xyz

9931.win *.9931.win

airhosting.top *.airhosting.top

bigboss-games.com *.bigboss-games.com

budelinks.com *.budelinks.com

catastrophiccomics.com *.catastrophiccomics.com

cuvzy.gdn *.cuvzy.gdn

diefashionista.com *.diefashionista.com

dxj01.xyz *.dxj01.xyz

e33f.cyou *.e33f.cyou

heiliaowang-46.buzz *.heiliaowang-46.buzz

hellohianvil.com *.hellohianvil.com

infobooth.org *.infobooth.org

jyspo.cc *.jyspo.cc

kgyfz9001.xyz *.kgyfz9001.xyz

kingdoms-roc.com *.kingdoms-roc.com

langyoufl201.buzz *.langyoufl201.buzz

makesafeporn.org *.makesafeporn.org

maoyishang.com *.maoyishang.com

mir-klimata.com *.mir-klimata.com

mumu992od.online *.mumu992od.online

nupuu-pen.buzz *.nupuu-pen.buzz

official-asiagacor77.info *.official-asiagacor77.info

ovictsglobal.com *.ovictsglobal.com

precisionautomobile.com *.precisionautomobile.com

theinnocencetest.us *.theinnocencetest.us

theory.baby *.theory.baby

tripsindia.com *.tripsindia.com

ultrahub476.info *.ultrahub476.info

unvsecurity.top *.unvsecurity.top

wahanapremium.xyz *.wahanapremium.xyz

wintercoats.ca *.wintercoats.ca

yunub18.buzz *.yunub18.buzz

zareefshop24.com *.zareefshop24.com

zenithseeker513.top *.zenithseeker513.top