SSL Certificate Analysis for nt2.eld.me - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=pumping.au

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 15, 2026

Valid Until

August 13, 2026 75 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

75:19:2E:86:EF:91:B6:4E:B2:E9:5F:3C:36:C4:81:30:8D:86:D4:2F:31:AB:C3:FA:56:03:55:05:0E:79:64:30

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

eld.me *.eld.me *.isaac.eld.me *.landkreis-birkenf.eld.me *.m.eld.me *.nr.eld.me *.nt2.eld.me *.shotgunheatshi.eld.me *.sitemaps.eld.me

Other domains in certificate

288246.lol *.288246.lol *.lkuo8o.288246.lol

baoji100.com *.baoji100.com *.jobs.baoji100.com *.looker.baoji100.com *.m.baoji100.com *.sezmmqmtz48r768tl6ma.baoji100.com *.wap.baoji100.com *.wildcard.baoji100.com

*.32.bluesystem.studio bluesystem.studio *.bluesystem.studio *.mg.bluesystem.studio

*.backup.evtaxi.ca *.beta.evtaxi.ca *.crm.evtaxi.ca *.demo.evtaxi.ca evtaxi.ca *.evtaxi.ca *.m.evtaxi.ca *.old.evtaxi.ca *.temp.evtaxi.ca

ggfs8.lol *.ggfs8.lol *.ww17.ggfs8.lol

*.dns.kittape.com *.hostmaster.kittape.com kittape.com *.kittape.com *.mx7.kittape.com *.ww13.kittape.com *.ww25.kittape.com

*.6e1c176c-74aa-428e-8370-2e3b598377c6.launa.com *.google.launa.com launa.com *.launa.com *.login.launa.com *.nsaerww1.launa.com *.random.launa.com *.rd.launa.com *.rdgateway.launa.com *.rdp.launa.com *.rds.launa.com *.sitemaps.launa.com *.store.launa.com *.vpn.launa.com *.wiki.launa.com *.ww16.launa.com *.ww25.launa.com *.ww38.launa.com *.www.launa.com

*.4bbe6bee-725b-4409-a92d-4c006ab70c7e.pipelineleadspro.info *.a.pipelineleadspro.info *.api.pipelineleadspro.info *.dev.pipelineleadspro.info pipelineleadspro.info *.pipelineleadspro.info *.staging.pipelineleadspro.info *.uat.pipelineleadspro.info *.www.pipelineleadspro.info

pumping.au *.pumping.au

*.ar.vivacello.org *.bg.vivacello.org *.de.vivacello.org *.el.vivacello.org *.es.vivacello.org *.fr.vivacello.org *.hu.vivacello.org *.pl.vivacello.org *.pt.vivacello.org *.sr.vivacello.org *.th.vivacello.org *.tr.vivacello.org vivacello.org *.vivacello.org *.zh.vivacello.org