SSL Certificate Analysis for manjang.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=epix.it

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 05, 2026

Valid Until

May 06, 2026 81 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F4:7F:AA:21:1A:9F:F5:9C:C5:CF:D3:A6:2E:C8:0E:0C:04:CE:60:A9:6B:31:D3:1C:E9:D9:01:2E:62:F2:F2:64

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

manjang.com *.manjang.com *.autodiscover.manjang.com *.remote.manjang.com

Other domains in certificate

1001hojre.com *.1001hojre.com

132movies.com *.132movies.com

9gagmeme.xyz *.9gagmeme.xyz *.blog.9gagmeme.xyz

*.akp.baxai.com baxai.com *.baxai.com *.tw.baxai.com

bestbuymobility.com *.bestbuymobility.com

edmund.no *.edmund.no *.ww38.edmund.no

epix.it *.epix.it *.reporting.epix.it

fansportsclub.com *.fansportsclub.com

festivalt.org *.festivalt.org

gr8search.cc *.gr8search.cc *.wildcard.gr8search.cc *.ww17.gr8search.cc *.ww38.gr8search.cc

groceryavenue.org *.groceryavenue.org

hariangloballampung.com *.hariangloballampung.com

hotcreatives.com *.hotcreatives.com *.webmail.hotcreatives.com

lanuevagrandederiograndezac.com *.lanuevagrandederiograndezac.com

lululu74.info *.lululu74.info *.wildcard.lululu74.info

mekaniktoto.com *.mekaniktoto.com

olx4dbet.org *.olx4dbet.org

omo77.click *.omo77.click

*.autodiscover.pasadera.com *.cowww.pasadera.com *.mail.pasadera.com pasadera.com *.pasadera.com

*.admin.potlocker.vip *.ahandinhandcadmin.potlocker.vip potlocker.vip *.potlocker.vip *.wildcard.potlocker.vip *.www.potlocker.vip

ptoopudsorse.com *.ptoopudsorse.com

*.cat.puntoe.com *.desktop.puntoe.com puntoe.com *.puntoe.com *.ra.puntoe.com *.rds.puntoe.com *.vdi.puntoe.com

receitasdavoana.com *.receitasdavoana.com

*.hostmaster.superanimes.net *.mail.superanimes.net *.random.superanimes.net superanimes.net *.superanimes.net *.w.superanimes.net *.www.superanimes.net

*.test.topspel.be topspel.be *.topspel.be

*.superset.venomous.it venomous.it *.venomous.it

volcars.com *.volcars.com

*.lavender.windingbrookestate.com windingbrookestate.com *.windingbrookestate.com