SSL Certificate Analysis for maamo.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=click-investor.click

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 05, 2026

Valid Until

May 06, 2026 72 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

94:42:01:53:5B:D3:48:8D:1D:5D:36:2C:CB:30:C8:1B:D0:99:1E:05:4C:22:87:7D:A7:E4:77:29:34:02:9F:A1

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

maamo.com *.maamo.com *.sxxxx.maamo.com

Other domains in certificate

aypet.com *.aypet.com *.uxo.aypet.com

*.800f2b9b-db7f-49d7-9982-16aec302ecd8.click-investor.click click-investor.click *.click-investor.click *.dashs.click-investor.click *.www.click-investor.click

dineroyfinanzas.com *.dineroyfinanzas.com *.hllimadmin.dineroyfinanzas.com

janeisha.com *.janeisha.com *.rustore.janeisha.com *.ww17.janeisha.com

*.blog.koradbox.com koradbox.com *.koradbox.com

*.68-os.lernsa.de *.admin.lernsa.de *.afra.lernsa.de *.agro.lernsa.de *.analytic.lernsa.de *.analytics.lernsa.de *.api.lernsa.de *.app.lernsa.de *.autodiscover.lernsa.de *.aycdchmcj9u4unh4wdwba.lernsa.de *.backend.lernsa.de *.bi.lernsa.de *.chart.lernsa.de *.dashboard.lernsa.de *.dashboards.lernsa.de *.dashs.lernsa.de *.demo.lernsa.de *.dev.lernsa.de *.ftp.lernsa.de *.gykl.lernsa.de *.hermes.lernsa.de *.hmcj9u4unh4wdwba.lernsa.de *.intranet.lernsa.de *.ipso.lernsa.de *.kn0ufcs049fpnj8i.lernsa.de *.kundenportal.lernsa.de lernsa.de *.lernsa.de *.luriradeberg.lernsa.de *.magento.lernsa.de *.mail.lernsa.de *.metric.lernsa.de *.metrics.lernsa.de *.mx4.lernsa.de *.notexistsmagento.lernsa.de *.notexistsstaging.lernsa.de *.old.lernsa.de *.partner.lernsa.de *.redash.lernsa.de *.remote.lernsa.de *.reporting.lernsa.de *.shop.lernsa.de *.smtp3.lernsa.de *.srv.lernsa.de *.staging.lernsa.de *.stats.lernsa.de *.store.lernsa.de *.superset.lernsa.de *.test.lernsa.de *.visual.lernsa.de *.vps.lernsa.de *.w.lernsa.de *.www.lernsa.de

*.admin.monitorlink.pro *.autoconfig.monitorlink.pro *.com.monitorlink.pro monitorlink.pro *.monitorlink.pro *.sitemap.monitorlink.pro *.whm.monitorlink.pro *.ww38.monitorlink.pro *.yphuyautoconfig.monitorlink.pro

*.contact.shoeders.com shoeders.com *.shoeders.com

*.swiftly.tradingbitfx.info tradingbitfx.info *.tradingbitfx.info