SSL Certificate Analysis for thejumpfactory.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=billprotect.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 05, 2026

Valid Until

May 06, 2026 70 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A0:C0:76:DC:BE:01:6E:51:38:D2:50:45:5E:EC:FD:85:1E:FA:8D:8B:D9:EE:09:D4:76:20:AF:C1:64:D6:BA:5A

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

thejumpfactory.com *.thejumpfactory.com *.api.thejumpfactory.com *.sitemap.thejumpfactory.com

Other domains in certificate

569783.co *.569783.co

achievefitnessdreams.run *.achievefitnessdreams.run *.admin.achievefitnessdreams.run

billprotect.com *.billprotect.com *.vpn.billprotect.com

*.anyconnect.dananet.com *.backup.dananet.com dananet.com *.dananet.com *.vpn.dananet.com

deview.com *.deview.com *.tw.deview.com

diamondringdesigners.com.au *.diamondringdesigners.com.au

*.beta.dieselgas.com dieselgas.com *.dieselgas.com *.forums.dieselgas.com *.hostmaster.dieselgas.com *.sitemaps.dieselgas.com

dif.onl *.dif.onl *.localhost.dif.onl

*.beta.erapublishing.com erapublishing.com *.erapublishing.com

exportbeds.com *.exportbeds.com *.random.exportbeds.com *.wildcard.exportbeds.com

forexanalytics.org *.forexanalytics.org *.store.forexanalytics.org

lordyano.online *.lordyano.online

*.6jpe.mayoseed.com *.bup3qp.mayoseed.com *.c26lpy.mayoseed.com *.kj9dw.mayoseed.com *.lbbc0h.mayoseed.com mayoseed.com *.mayoseed.com *.oddd2x.mayoseed.com *.p91ah.mayoseed.com *.pvdh.mayoseed.com *.qelp.mayoseed.com *.qqpvpe.mayoseed.com *.ryo8ne.mayoseed.com *.sl2o8p.mayoseed.com *.sp9ry.mayoseed.com *.ube9g.mayoseed.com *.xkus.mayoseed.com *.yfflw9.mayoseed.com *.z4shn.mayoseed.com *.zl803k.mayoseed.com

*.api.theshoppingcard.com *.random.theshoppingcard.com theshoppingcard.com *.theshoppingcard.com

*.api.thrillmore.com thrillmore.com *.thrillmore.com

*.app.usa1600.com *.chart.usa1600.com *.hostmaster.usa1600.com usa1600.com *.usa1600.com

*.ca.worldclassbeer.com *.cbus.worldclassbeer.com *.comin.worldclassbeer.com *.fleck.worldclassbeer.com *.framein.worldclassbeer.com *.id.worldclassbeer.com *.il.worldclassbeer.com *.ks.worldclassbeer.com *.or.worldclassbeer.com *.ri.worldclassbeer.com *.sc.worldclassbeer.com *.va.worldclassbeer.com worldclassbeer.com *.worldclassbeer.com