SSL Certificate Analysis for srv.appexenterprises.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=16dh.cc

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 18, 2026

Valid Until

August 16, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

54:D7:80:AA:85:47:0D:02:78:BE:91:AE:CF:CC:59:29:5D:90:16:8D:C7:03:28:C3:8B:14:55:11:AB:F8:E8:E6

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

appexenterprises.com *.appexenterprises.com

Other domains in certificate

16dh.cc *.16dh.cc

32766ai.co *.32766ai.co

38968.co *.38968.co

41285.one *.41285.one

50pmbet.vip *.50pmbet.vip

53357.one *.53357.one

53512.one *.53512.one

66168.one *.66168.one

66821.one *.66821.one

70871.one *.70871.one

75898.one *.75898.one

83353m.com *.83353m.com

alivn.com *.alivn.com

amazingsneaker.com *.amazingsneaker.com

anunclic.vip *.anunclic.vip

arriyaticket.com *.arriyaticket.com

baimingzhu.com *.baimingzhu.com

bank138.net *.bank138.net

cinemaai.org *.cinemaai.org

eatwithmonks.com *.eatwithmonks.com

floridiany.com *.floridiany.com

flycc02.org.cn *.flycc02.org.cn

gameslotcq9.top *.gameslotcq9.top

geng138.net *.geng138.net

georgiabythesea.com *.georgiabythesea.com

helobylavonne.com *.helobylavonne.com

hypedomains.io *.hypedomains.io

icota.town *.icota.town

mudthegame.com *.mudthegame.com

newgenerationsbooks.com *.newgenerationsbooks.com

tikqqe.xyz *.tikqqe.xyz

tuitionbay.com *.tuitionbay.com

tully.org *.tully.org

verifiedvictuals.food *.verifiedvictuals.food

xrncp66.com *.xrncp66.com

xxtv2.vip *.xxtv2.vip

xxtv80.vip *.xxtv80.vip

xxtv88.vip *.xxtv88.vip

xxtv90.vip *.xxtv90.vip

xxtv91.vip *.xxtv91.vip

xxtv98.vip *.xxtv98.vip

xyqfa.town *.xyqfa.town

xzi8r4h.top *.xzi8r4h.top

yallahouse.com *.yallahouse.com