SSL Certificate Analysis for test.codeamajigs.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=qiqitv.vip

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 23, 2026

Valid Until

August 21, 2026 64 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

59:DD:0F:B4:B8:BE:11:DB:8C:E8:A6:A3:8B:87:04:63:A2:56:4F:E9:CB:28:9D:2A:29:87:53:42:E0:D4:F0:05

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

codeamajigs.com *.codeamajigs.com

Other domains in certificate

05412.tel *.05412.tel

224129.vip *.224129.vip

23663.tel *.23663.tel

31290.blog *.31290.blog

3mogi.com *.3mogi.com

406169.cc *.406169.cc

537489.cc *.537489.cc

6076458.cc *.6076458.cc

61037.one *.61037.one

768532.blog *.768532.blog

84940.pro *.84940.pro

88658.wiki *.88658.wiki

aiqmagic.com *.aiqmagic.com

aiqskiing.com *.aiqskiing.com

aspacc2025.org *.aspacc2025.org

asuntospublicos.org *.asuntospublicos.org

ceqegau.com *.ceqegau.com

dailyamarkotha.com *.dailyamarkotha.com

deepexs.com *.deepexs.com

donallum.com *.donallum.com

dpxqnfvy.sbs *.dpxqnfvy.sbs

edios.co *.edios.co

fitnessoraclelab.run *.fitnessoraclelab.run

fitnessoraclepath.run *.fitnessoraclepath.run

gcpge.cc *.gcpge.cc

gopipeline.pro *.gopipeline.pro

gossiphaven.net *.gossiphaven.net

gossipnucleus.live *.gossipnucleus.live

hypolipo.com *.hypolipo.com

iefqyx.cc *.iefqyx.cc

*.cpcalendars.investingpla.net investingpla.net *.investingpla.net *.mail.investingpla.net *.random.investingpla.net *.webdisk.investingpla.net *.webmail.investingpla.net

kfawa.town *.kfawa.town

linonature.net *.linonature.net

magnoxelectric.com *.magnoxelectric.com

moelmkahel.com *.moelmkahel.com

new88b2.cc *.new88b2.cc

nexal.co *.nexal.co

pixelpar.com *.pixelpar.com

qiqitv.vip *.qiqitv.vip

tvmszi.com *.tvmszi.com

universalshipper.com *.universalshipper.com