SSL Certificate Analysis for leverageprime.co - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ascendstrategy.co

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 12, 2026

Valid Until

August 10, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

65:A1:91:2E:A4:35:A7:77:A3:6B:1C:8E:AE:D0:71:CC:57:FD:81:1D:C0:70:66:A8:55:55:01:B8:44:33:76:0F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

leverageprime.co *.leverageprime.co

Other domains in certificate

26953663.vip *.26953663.vip

454597.co *.454597.co

ascendstrategy.co *.ascendstrategy.co

aspiremomentum.co *.aspiremomentum.co

avlulu301.xyz *.avlulu301.xyz

computers.mobi *.computers.mobi

couq.com *.couq.com

creativechocolate.com *.creativechocolate.com

gyuf.my *.gyuf.my

handshakedns.com *.handshakedns.com

hsmp861.org *.hsmp861.org

htzb725.tv *.htzb725.tv

infinitywebworks.co.in *.infinitywebworks.co.in

kray.markets *.kray.markets

laguna-joseignacio.info *.laguna-joseignacio.info

leveragelift.co *.leveragelift.co

lgosurgaforever.top *.lgosurgaforever.top

libertyhomesdesignbuild.com *.libertyhomesdesignbuild.com

mamen123-rtpjos2.shop *.mamen123-rtpjos2.shop

marketsfunds.com *.marketsfunds.com

mibqmuayiuhdp4.com *.mibqmuayiuhdp4.com

mihgd.com *.mihgd.com

noticaleta.net *.noticaleta.net

pivotdrive.co *.pivotdrive.co

planetimpulse.com *.planetimpulse.com

plotchain.co *.plotchain.co

prabhaengineering.co.in *.prabhaengineering.co.in

roriver.art *.roriver.art

speyj.org *.speyj.org

stzav.qpon *.stzav.qpon

teslaxaifinance.com *.teslaxaifinance.com

theplatformagency.com *.theplatformagency.com

tigerhuhu.cfd *.tigerhuhu.cfd

tjgfjzc.com *.tjgfjzc.com

trueguidetravel.xyz *.trueguidetravel.xyz

tyvib9q.cc *.tyvib9q.cc

unclebilsparadise.com *.unclebilsparadise.com

usedesignmaphq.com *.usedesignmaphq.com

www8zc8.cc *.www8zc8.cc

xn--cesoxosi3qcu9byyi.app *.xn--cesoxosi3qcu9byyi.app

xonyewa6.cc *.xonyewa6.cc

zairo.xyz *.zairo.xyz

zgrcmh.net *.zgrcmh.net

zzz762.top *.zzz762.top