SSL Certificate Analysis for lb-212-253.above.com - Security Grade & TLS Configuration

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Hostname Mismatch - certificate is issued for *.360bocaitong.win8mi.com, *.555qipaiyouxi.win8mi.com, *.789huangguanwangzhiguangxunwang.win8mi.com, *.98nbazhiboba.win8mi.com, *.aomenpujingwangshang.win8mi.com, *.aomenzuqiubocaiwangzhan.win8mi.com, *.baijialeyuantianshangrenjian.win8mi.com, *.baipiao.space, *.baota.baipiao.space, not for lb-212-253.above.com

Open Cached · just now

73/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=m98vip.bet

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 21, 2026

Valid Until

April 21, 2026 29 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

78:D9:B8:D0:FD:4B:3C:BB:12:54:ED:34:E4:58:80:44:40:5D:1D:BA:2E:1C:17:48:5B:EC:36:10:C4:A7:37:D8

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

baipiao.space *.baipiao.space *.baota.baipiao.space

eduerpm2s.com *.eduerpm2s.com *.forms.eduerpm2s.com *.hegemony.eduerpm2s.com *.hgs.eduerpm2s.com *.sms-erp.eduerpm2s.com

*.capitan.imovypay.com.br *.caprover.imovypay.com.br imovypay.com.br *.imovypay.com.br

*.bk8thai.m98vip.bet *.lottothai.m98vip.bet m98vip.bet *.m98vip.bet *.w88.m98vip.bet *.w88beat.m98vip.bet

moviesjoy.ltd *.moviesjoy.ltd *.ww38.moviesjoy.ltd

*.kabinet.realnet.pro realnet.pro *.realnet.pro

theporn277.cc *.theporn277.cc *.ww38.theporn277.cc

*.360bocaitong.win8mi.com *.555qipaiyouxi.win8mi.com *.789huangguanwangzhiguangxunwang.win8mi.com *.98nbazhiboba.win8mi.com *.aomenpujingwangshang.win8mi.com *.aomenzuqiubocaiwangzhan.win8mi.com *.baijialeyuantianshangrenjian.win8mi.com *.bet365gengxinqi.win8mi.com *.bet365tiyuzaixian15.win8mi.com *.bet365yule.win8mi.com *.bocaitongbailecai.win8mi.com *.bocaitongcelue.win8mi.com *.bocaiwangzhidaohang.win8mi.com *.bonifaluntan.win8mi.com *.damajiangdejiqiao.win8mi.com *.dingwangguoji.win8mi.com *.dubogongsi.win8mi.com *.duqianjiqiao.win8mi.com *.duqiuzhe.win8mi.com *.eshibowangzhan.win8mi.com *.f.win8mi.com *.haiguishuoshiduqiu.win8mi.com *.hejiguojiyulekaihu.win8mi.com *.huangguanwangzhizhitongjiasuqi.win8mi.com *.jinbaobo188gunqiu.win8mi.com *.jingcaibifen.win8mi.com *.jinguan.win8mi.com *.jinhaoguoji.win8mi.com *.laohuji.win8mi.com *.liboyazhou.win8mi.com *.lilaiyouxi.win8mi.com *.meishilunpan.win8mi.com *.mianduimianqipaiyouxi.win8mi.com *.mingshengguoji.win8mi.com *.mingzhuwangshangyule.win8mi.com *.netbet365ok.win8mi.com *.ouzhoubeiduqiu.win8mi.com *.qileyazhouyule.win8mi.com *.shengjingqipaiwang.win8mi.com *.suboyule.win8mi.com *.tianxiazuqiuzhiboba.win8mi.com *.wanbo88.win8mi.com *.weiboyulecheng.win8mi.com win8mi.com *.win8mi.com *.www016com.win8mi.com *.xianjinduboyouxi.win8mi.com *.xianjinwangyouxi.win8mi.com *.xinhaotiandiyulecheng.win8mi.com *.xinliguojidaili.win8mi.com *.xinpujingjiudian.win8mi.com *.xinshijiyule.win8mi.com *.yiboguoji.win8mi.com *.yundingguojipingtai.win8mi.com *.yuwangqipaiyouxidating.win8mi.com *.zhajinhuaqianshu.win8mi.com *.zhenshizhajinhuayouxi.win8mi.com *.zhizunguoji.win8mi.com *.zunjueguojiyule.win8mi.com *.zuqiubifen007.win8mi.com

zcosale.com *.zcosale.com