SSL Certificate Analysis for test.commonlaw.dev - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=427821.lol

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 11, 2026

Valid Until

August 09, 2026 78 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F9:52:3B:AA:32:D7:E4:9E:14:08:C5:47:D9:82:60:AE:2C:27:7E:02:D0:34:88:53:63:17:CB:26:72:DA:8F:E8

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

commonlaw.dev *.commonlaw.dev *.4e746c7b-86fe-42d4-a4cc-17fcd4549805.commonlaw.dev *.ak33e2.commonlaw.dev *.app.commonlaw.dev *.bot.commonlaw.dev *.dev.commonlaw.dev *.docs.commonlaw.dev *.external.commonlaw.dev *.portal.commonlaw.dev *.public.commonlaw.dev *.share.commonlaw.dev *.sharepoint.commonlaw.dev *.test.commonlaw.dev *.www.commonlaw.dev

Other domains in certificate

108503.lol *.108503.lol

11040.pro *.11040.pro

13516.me *.13516.me

142697.cc *.142697.cc

155359.lol *.155359.lol

26312.top *.26312.top

427821.lol *.427821.lol

490543.lol *.490543.lol

579326.lol *.579326.lol

579351.lol *.579351.lol

593110.lol *.593110.lol

5yqgdg8y65.world *.5yqgdg8y65.world

81661110.com *.81661110.com

962618.lol *.962618.lol

96835v.info *.96835v.info

969400.lol *.969400.lol

aimorph.pro *.aimorph.pro

cheap-car-catalog-brazil.sbs *.cheap-car-catalog-brazil.sbs

gobytesoul.com *.gobytesoul.com

grow-circle.info *.grow-circle.info

gwyatiojhgnlrtihllnp.com *.gwyatiojhgnlrtihllnp.com

hq77rcs.cc *.hq77rcs.cc

jdwu8.lol *.jdwu8.lol

k9b27d.my *.k9b27d.my

latouni.com *.latouni.com *.m.latouni.com *.remote.latouni.com

machinetrends.com *.machinetrends.com

niamatoksxsmaox3.info *.niamatoksxsmaox3.info

ugbet365.net *.ugbet365.net

wre85.icu *.wre85.icu

www4080js.com *.www4080js.com

xff9ud.top *.xff9ud.top

xiohor.auction *.xiohor.auction

yhbbi.auction *.yhbbi.auction

yyh2m.com *.yyh2m.com

zdwa6vx.cc *.zdwa6vx.cc

zeus139.shop *.zeus139.shop