SSL Certificate Analysis for mp4zen.top - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=lsbenfits2025.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 14, 2026

Valid Until

August 12, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B2:2A:D3:83:6C:CD:13:03:DC:18:9D:61:25:53:1D:E5:9F:E1:E8:F8:4C:B0:CF:50:7C:F9:E5:C2:0F:60:7B:28

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

mp4zen.top *.mp4zen.top *.5vs9r.mp4zen.top *.g22y8.mp4zen.top *.qdiek.mp4zen.top *.qk6fu.mp4zen.top *.sbd1u.mp4zen.top *.tpxa3.mp4zen.top *.uw9i.mp4zen.top *.v3ywp.mp4zen.top

Other domains in certificate

431391.loan *.431391.loan *.qeirmn.431391.loan

*.assets.bilen.info *.beta.bilen.info bilen.info *.bilen.info *.dev.bilen.info *.email.bilen.info *.esus.bilen.info *.ww38.bilen.info *.www.bilen.info

breastscreening.au *.breastscreening.au

cinderellasolutions.com *.cinderellasolutions.com

claus.com.au *.claus.com.au *.wildcard.claus.com.au *.ww25.claus.com.au

coachbizeliteup.com *.coachbizeliteup.com *.qi5c2a.coachbizeliteup.com

distri.it *.distri.it

*.a.hotelgrandorchardwings.info *.dev.hotelgrandorchardwings.info hotelgrandorchardwings.info *.hotelgrandorchardwings.info *.qm6u78.hotelgrandorchardwings.info

lsbenfits2025.com *.lsbenfits2025.com

lsbenifits2025.com *.lsbenifits2025.com

*.admin.meltx.net *.backup.meltx.net meltx.net *.meltx.net *.uat.meltx.net *.web.meltx.net

*.access.mtiledesign.com *.admin.mtiledesign.com *.cisco.mtiledesign.com *.ciscovpn.mtiledesign.com *.firewall.mtiledesign.com *.gateway.mtiledesign.com *.login.mtiledesign.com mtiledesign.com *.mtiledesign.com *.outlook.mtiledesign.com *.portal.mtiledesign.com *.ra.mtiledesign.com *.relay.mtiledesign.com *.remote.mtiledesign.com *.secure.mtiledesign.com *.webvpn.mtiledesign.com

pokershow.au *.pokershow.au

*.api.telofino.com *.assets.telofino.com *.demo.telofino.com *.fkeifbackup.telofino.com *.m5zf2j.telofino.com *.members.telofino.com telofino.com *.telofino.com *.vntekfkeifbackup.telofino.com

*.02.walmartt.ca *.03.walmartt.ca *.05.walmartt.ca *.06.walmartt.ca *.07.walmartt.ca *.5c3.walmartt.ca walmartt.ca *.walmartt.ca *.ww16.walmartt.ca *.ww38.walmartt.ca

wwwturbochargersettlement.com *.wwwturbochargersettlement.com