SSL Certificate Analysis for mx.assetific.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=dutybox.com.au

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 24, 2026

Valid Until

July 23, 2026 70 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

E4:CF:25:EA:40:9A:A6:40:3D:52:1F:46:D8:BA:36:4A:1B:29:B8:96:C7:93:A9:73:4D:16:BB:C7:97:95:9D:A9

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

assetific.com *.assetific.com *.vpn.assetific.com *.wwww.assetific.com

Other domains in certificate

amazingai.pro *.amazingai.pro

authorize.co.uk *.authorize.co.uk *.blogadmin.authorize.co.uk *.blogs.authorize.co.uk

bdlikefollowers.com *.bdlikefollowers.com

*.a0b7c839-c010-4324-8024-6460fa3351a7.boone.cool *.api.boone.cool boone.cool *.boone.cool *.ww25.boone.cool

dermatologydirectory.au *.dermatologydirectory.au

*.b.djkvbne.church djkvbne.church *.djkvbne.church

*.analytic.dutybox.com.au dutybox.com.au *.dutybox.com.au *.test.dutybox.com.au *.ww25.dutybox.com.au

ezypluggin.com *.ezypluggin.com

ffloor.shop *.ffloor.shop

foxnatiom.com *.foxnatiom.com *.go.foxnatiom.com

gam3rb.com *.gam3rb.com *.wildcard.gam3rb.com *.ww17.gam3rb.com *.ww25.gam3rb.com *.ww38.gam3rb.com

hannohowo.net *.hannohowo.net

*.6250d66d-071a-4023-8663-7a161149dce1.j-n-4-4-4.site *.a7c2ee10-b2ec-43ea-8390-64d9d4d8fcde.j-n-4-4-4.site *.admin.j-n-4-4-4.site *.aging.j-n-4-4-4.site *.api.j-n-4-4-4.site *.app.j-n-4-4-4.site *.ayvjnmembers.j-n-4-4-4.site *.bgnwxstaging.j-n-4-4-4.site *.cursos.j-n-4-4-4.site *.dev.j-n-4-4-4.site j-n-4-4-4.site *.j-n-4-4-4.site *.links.j-n-4-4-4.site *.test.j-n-4-4-4.site *.w.j-n-4-4-4.site

*.app.marketingtoolscenter.info *.assets.marketingtoolscenter.info *.blog.marketingtoolscenter.info *.eveyrblog.marketingtoolscenter.info marketingtoolscenter.info *.marketingtoolscenter.info

matsspot.com *.matsspot.com

*.m.nyrn.org nyrn.org *.nyrn.org

oldtibia.org *.oldtibia.org *.sv.oldtibia.org

proveedoress.com *.proveedoress.com

servicedoc.info *.servicedoc.info

*.dc.tbnrv.com *.et.tbnrv.com *.smtp.tbnrv.com *.ssl.tbnrv.com tbnrv.com *.tbnrv.com *.track.tbnrv.com *.v2.tbnrv.com *.ww25.tbnrv.com *.ww38.tbnrv.com *.zabbix.tbnrv.com *.zimbra.tbnrv.com

*.loan.zhndb.loan zhndb.loan *.zhndb.loan