SSL Certificate Analysis for ucecorp.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=thepumpingchicago.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 04, 2026

Valid Until

May 05, 2026 73 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

04:74:D8:EF:79:84:D5:DB:C1:81:F3:CB:B5:E8:E2:4D:11:EC:CC:10:C3:2A:E7:78:7F:F5:AF:76:4D:EB:79:C4

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

ucecorp.com *.ucecorp.com

Other domains in certificate

tracker.co.in *.tracker.co.in

gift-card-per-dipendenti.cfd *.gift-card-per-dipendenti.cfd

googlegoatse.com *.googlegoatse.com

*.cdek.grecwalk.top grecwalk.top *.grecwalk.top

greenbutcher.it *.greenbutcher.it

grouting.it *.grouting.it

guffredo.com *.guffredo.com

hearttravelhues.live *.hearttravelhues.live

herefriend.cn *.herefriend.cn

hftgl.net *.hftgl.net

hibu.it *.hibu.it

hixtc.loan *.hixtc.loan

hkflxm.cn *.hkflxm.cn

hngiv.pro *.hngiv.pro

home-care-agency-ca14-dp.click *.home-care-agency-ca14-dp.click

home-cleaning-service-near-me-w.buzz *.home-cleaning-service-near-me-w.buzz

homeshow.it *.homeshow.it

honesttraveljourneys.live *.honesttraveljourneys.live

hookupfishing.com *.hookupfishing.com

hospitalmontesinai.com *.hospitalmontesinai.com

thegenius.it *.thegenius.it

thepumpingchicago.com *.thepumpingchicago.com

thewxsocial.com *.thewxsocial.com

thighmaster.net *.thighmaster.net

titulusforum.org *.titulusforum.org

tivat.mn *.tivat.mn

tmav373.com *.tmav373.com

topblogdiscover.com *.topblogdiscover.com

tordino.it *.tordino.it

tornano.it *.tornano.it

toughbiker.it *.toughbiker.it

tp1293.com *.tp1293.com

tradehubconnection.cyou *.tradehubconnection.cyou

trustedge.online *.trustedge.online

tryboostapp.org *.tryboostapp.org

tryvidan.com *.tryvidan.com

tt400.cc *.tt400.cc

tta.me *.tta.me

ttm6xas.top *.ttm6xas.top

tudor.it *.tudor.it

turnoff.it *.turnoff.it

tz858622fa003.top *.tz858622fa003.top

udoedu.com *.udoedu.com