SSL Certificate Analysis for microsoftjobs.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=thebigbop.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 12, 2026

Valid Until

April 12, 2026 45 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

85:B3:96:D5:62:BB:4F:DD:8D:76:FD:2E:36:D2:82:97:BB:4F:69:59:39:AE:AE:F7:82:D4:CE:F9:93:94:05:47

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

microsoftjobs.com *.microsoftjobs.com *.panel.microsoftjobs.com *.sqs.microsoftjobs.com *.www.microsoftjobs.com

Other domains in certificate

*.affiliates.atwestelm.com atwestelm.com *.atwestelm.com *.dns.atwestelm.com *.graph.atwestelm.com *.help.atwestelm.com *.hostmaster.atwestelm.com *.jc.atwestelm.com *.money.atwestelm.com *.mx7.atwestelm.com *.pruebas.atwestelm.com *.pt.atwestelm.com *.stage.atwestelm.com *.statics.atwestelm.com *.users.atwestelm.com *.windu.atwestelm.com *.ww38.atwestelm.com

*.autodiscover.bettinaliano.com.au bettinaliano.com.au *.bettinaliano.com.au *.m.bettinaliano.com.au *.richiespice.bettinaliano.com.au *.ww38.bettinaliano.com.au

bt9532.com *.bt9532.com

catalinadc3.com *.catalinadc3.com *.ww38.catalinadc3.com

centterpointenergy.com *.centterpointenergy.com

mfb.co.in *.mfb.co.in

doctordavidwhite.com.au *.doctordavidwhite.com.au *.ww16.doctordavidwhite.com.au *.ww38.doctordavidwhite.com.au

gen-meat.com *.gen-meat.com

*.admin.healthsun.co healthsun.co *.healthsun.co *.ww25.healthsun.co *.www.healthsun.co

hm4366.com *.hm4366.com

icmp2018.org *.icmp2018.org

jacketheater.com *.jacketheater.com

lausannebondyblog.ch *.lausannebondyblog.ch

linguistictools.com *.linguistictools.com

*.alumni.meter1.com *.foto.meter1.com *.gw.meter1.com *.mails.meter1.com meter1.com *.meter1.com

*.aglasem.pseb.com *.hall-community.pseb.com *.iplo.pseb.com *.olymiod.pseb.com *.olympiad.pseb.com *.petet.pseb.com pseb.com *.pseb.com *.pstet.pseb.com *.pstse.pseb.com *.random.pseb.com *.walf.pseb.com *.ww17.pseb.com *.ww38.pseb.com

sntaxpayments.com *.sntaxpayments.com

*.c03b8274.thebigbop.com thebigbop.com *.thebigbop.com

writingcourses.com.au *.writingcourses.com.au

xuongvitage.store *.xuongvitage.store

yafs.net *.yafs.net