SSL Certificate Analysis for mitotioksong.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=glasswing.studio

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 01, 2026

Valid Until

July 30, 2026 43 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C9:04:26:F1:0C:BA:F4:5D:F1:BC:B3:D5:CC:3B:31:93:59:3E:BE:13:16:D7:24:A3:53:02:BE:34:10:0D:26:93

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

mitotioksong.com *.mitotioksong.com *.b0ea4e4e-bc8b-41a6-88f6-41aaf01ebd0d.mitotioksong.com

Other domains in certificate

8uf3ujtf.com *.8uf3ujtf.com

acrumentiallc.store *.acrumentiallc.store *.cpcalendars.acrumentiallc.store *.webmail.acrumentiallc.store *.ww38.acrumentiallc.store

albionmultihck.space *.albionmultihck.space

auditedclaims.com *.auditedclaims.com *.sitemap.auditedclaims.com *.www.auditedclaims.com

dirtyloves.website *.dirtyloves.website

diyarbakirkiznumaralari.com *.diyarbakirkiznumaralari.com

floradanicajewellery.co.uk *.floradanicajewellery.co.uk

*.adm.glasswing.studio *.co.glasswing.studio *.cooperaziaaa.glasswing.studio *.fisfusim.glasswing.studio glasswing.studio *.glasswing.studio *.jw.glasswing.studio *.lib.glasswing.studio *.ls.glasswing.studio *.ph.glasswing.studio *.ps.glasswing.studio *.staging-mortgage.glasswing.studio *.www.glasswing.studio

*.b2s8ex.heatwaveent.com *.firewall.heatwaveent.com heatwaveent.com *.heatwaveent.com

ig77vip4.com *.ig77vip4.com *.kiss88.ig77vip4.com

juliocesardigital.online *.juliocesardigital.online *.ww25.juliocesardigital.online

lifenutrisystem.com *.lifenutrisystem.com

monitorrooks.sbs *.monitorrooks.sbs *.ww25.monitorrooks.sbs

*.eu-central-1.mwar.io mwar.io *.mwar.io

*.cpanel.nazbarbers.co.uk *.cpcalendars.nazbarbers.co.uk nazbarbers.co.uk *.nazbarbers.co.uk

pointingdogs.com *.pointingdogs.com *.www.pointingdogs.com

rak15.website *.rak15.website

ridesurf.co *.ridesurf.co *.ww38.ridesurf.co

selaludidepan.store *.selaludidepan.store

siddhamarkkam.com *.siddhamarkkam.com *.ww38.siddhamarkkam.com

sngbowork.com *.sngbowork.com *.ww25.sngbowork.com

*.my.subcontracting.co.uk *.portal.subcontracting.co.uk subcontracting.co.uk *.subcontracting.co.uk

*.admin.tabulate.it *.analytics.tabulate.it *.backend.tabulate.it *.demo.tabulate.it *.dev.tabulate.it *.intelligence.tabulate.it *.report.tabulate.it *.research.tabulate.it *.staging.tabulate.it tabulate.it *.tabulate.it *.www.tabulate.it