SSL Certificate Analysis for o10.org - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=117gamb.lol

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 12, 2026

Valid Until

July 11, 2026 60 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7B:81:5D:EF:7F:72:76:0D:F8:4D:C5:AE:4F:F1:55:31:6B:5C:D9:28:71:C2:C3:97:3D:54:EF:90:45:D5:D0:17

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

o10.org *.o10.org *.ood.o10.org

Other domains in certificate

117gamb.lol *.117gamb.lol

25641.koeln *.25641.koeln

40372.locker *.40372.locker

5624578.cc *.5624578.cc

56433.co *.56433.co

566615.cn *.566615.cn

69785.games *.69785.games

7792.win *.7792.win

80276.locker *.80276.locker

81326.blog *.81326.blog

82555.co *.82555.co

83076.blog *.83076.blog

83916.blog *.83916.blog

83q239ec5g.top *.83q239ec5g.top

85629.plus *.85629.plus

879.mom *.879.mom

978653.top *.978653.top

a2aprotocol.co *.a2aprotocol.co

criminalesq.com *.criminalesq.com

cstik.io *.cstik.io

d39a.cyou *.d39a.cyou

d59x.cyou *.d59x.cyou

e3bm6mbyb8.top *.e3bm6mbyb8.top

electronicmailman.com *.electronicmailman.com

ka7rwzi.cc *.ka7rwzi.cc

kapten808.lol *.kapten808.lol

ksg86.icu *.ksg86.icu

microtas2013-xiamen.org *.microtas2013-xiamen.org

nycdivorcefirm.com *.nycdivorcefirm.com

oalsm.town *.oalsm.town

pi88.cfd *.pi88.cfd

pnr87.icu *.pnr87.icu

pnu56.icu *.pnu56.icu

riverdang.com *.riverdang.com

rmg29.icu *.rmg29.icu

ruv73.icu *.ruv73.icu

sbobet777.bet *.sbobet777.bet

simplyamishdavenport.com *.simplyamishdavenport.com

skypitch.online *.skypitch.online

stainlesssteelmufflers.com *.stainlesssteelmufflers.com

stonecart.live *.stonecart.live

x93y.cyou *.x93y.cyou

yimengwaibao.cn *.yimengwaibao.cn