Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=jeeadv.ac
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 18, 2026
Valid Until
April 18, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:BC:DC:A2:A7:CD:A4:F2:D9:E4:E2:A1:C6:16:57:91:FA:1E:80:CA:3E:B4:5E:4E:EE:EF:CE:D7:0A:C7:73:23
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
81 domains
dnslink.com
*.dnslink.com
*.fw.dnslink.com
*.mnfw.dnslink.com
*.ns1.dnslink.com
*.ns4.dnslink.com
*.widget.dnslink.com
*.wp.dnslink.com
15-235-10-134.xyz
*.15-235-10-134.xyz
*.www.15-235-10-134.xyz
aeternos.me
*.aeternos.me
*.smp.aeternos.me
*.thechulipinha.aeternos.me
*.ww25.aeternos.me
artset.com.au
*.artset.com.au
baktrak.net
*.baktrak.net
checandopedido.online
*.checandopedido.online
christmastree.com
*.christmastree.com
*.cjgrlpobooduol.christmastree.com
*.doufu.christmastree.com
*.wll.christmastree.com
*.ww25.christmastree.com
*.ww38.christmastree.com
*.azeta.distribuciones.es
distribuciones.es
*.distribuciones.es
*.lyg.distribuciones.es
*.rm.distribuciones.es
*.rr.distribuciones.es
*.irportal.jeeadv.ac
jeeadv.ac
*.jeeadv.ac
*.result2.jeeadv.ac
*.ww25.jeeadv.ac
*.anyconnect.jiohotsttar.com
*.api.jiohotsttar.com
jiohotsttar.com
*.jiohotsttar.com
lightweightrvtrailers.com
*.lightweightrvtrailers.com
lurywig.com
*.lurywig.com
mineshaftpasty.net
*.mineshaftpasty.net
*.website.mineshaftpasty.net
monashmsclinic.com.au
*.monashmsclinic.com.au
plantsandgardeninghub.com
*.plantsandgardeninghub.com
readyproject.eu
*.readyproject.eu
rensoriginal.eu
*.rensoriginal.eu
sartie.de
*.sartie.de
selfbiling.online
*.selfbiling.online
*.ww25.selfbiling.online
*.ww38.selfbiling.online
skulldshaver.co
*.skulldshaver.co
*.ww38.skulldshaver.co
slovopatsana-7-1.online
*.slovopatsana-7-1.online
starexchange.eu
*.starexchange.eu
supplementsforhealth42.eu
*.supplementsforhealth42.eu
surfside-summer.store
*.surfside-summer.store
szdeve.store
*.szdeve.store
tagimaguitars.com.br
*.tagimaguitars.com.br
*.ww38.tagimaguitars.com.br
Other domains in certificate