Deep SSL/TLS Vulnerability Test
This report provides a deep analysis of the SSL/TLS configuration of dashboard.100ms.live. It checks for protocol support, cipher strength, and known vulnerabilities.
Scan Results
Start 2026-04-02 02:49:28 -->> 76.76.21.21:443 (dashboard.100ms.live) <<-- rDNS (76.76.21.21): -- Service detected: HTTP Testing for server implementation bugs No bugs found. Testing HTTP header response @ "/" HTTP Status Code 200 OK HTTP clock skew +635227 sec from localtime HTTP Age (RFC 7234) 635227 Strict Transport Security 730 days=63072000 s, just this domain Public Key Pinning -- Server banner Vercel Application banner -- Cookie(s) (none issued at "/") Security headers X-Frame-Options: DENY X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.googleapis.com *.atlassian.net *.stripe.com *.100ms.live *.clarity.ms *.google.com *.gstatic.com *.cookieyes.com https://cdn-cookieyes.com *.linkedin.com *.hubspot.com *.devrev.ai; script-src 'self' 'unsafe-inline' *.google.com *.googleapis.com *.gstatic.com *.hs-scripts.com *.googletagmanager.com *.visualwebsiteoptimizer.com *.stripe.com *.hs-banner.com *.hs-analytics.net *.cookieyes.com cdn-cookieyes.com *.licdn.com *.clarity.ms *.apollo.io *.atlassian.net *.devrev.ai; style-src 'self' 'unsafe-inline' *.googleapis.com; connect-src 'self' https: *.100ms.live *.google.com *.google.co.in *.googleapis.com *.cookieyes.com https://cdn-cookieyes.com *.atlassian.net *.stripe.com *.linkedin.com *.clarity.ms *.hubspot.com *.amplitude.com *.google-analytics.com aplo-evnt.com *.aplo-evnt.com *.devrev.ai; font-src 'self' *.gstatic.com; img-src 'self' https://cdn-cookieyes.com data: *.visualwebsiteoptimizer.com *.linkedin.com *.atlassian.net *.hubspot.com *.googleapis.com *.google.co.in; frame-src 'self' *.google.com *.stripe.com *.atlassian.net *.100ms.live; media-src 'self' https: blob: X-XSS-Protection: 1; mode=block Access-Control-Allow-Origin: * Referrer-Policy: strict-origin-when-cross-origin Cache-Control: public, max-age=0, must-revalidate Reverse Proxy banner -- Testing vulnerabilities Secure Renegotiation (RFC 5746) supported (OK) Secure Client-Initiated Renegotiation not vulnerable (OK) CRIME, TLS (CVE-2012-4929) not vulnerable (OK) BREACH (CVE-2013-3587) potentially NOT ok, "br gzip" HTTP compression detected. - only supplied "/" tested Can be ignored for static pages or if no secrets in the page POODLE, SSL (CVE-2014-3566) not vulnerable (OK) TLS_FALLBACK_SCSV (RFC 7507) No fallback possible (OK), no protocol below TLS 1.2 offered SWEET32 (CVE-2016-2183, CVE-2016-6329) not vulnerable (OK) FREAK (CVE-2015-0204) not vulnerable (OK) DROWN (CVE-2016-0800, CVE-2016-0703) not vulnerable on this host and port (OK) make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A2F5CB0C3530EB789940C8006C687054512CAE31C4B76C5FA1DD66533C9E0CEA LOGJAM (CVE-2015-4000), experimental not vulnerable (OK): no DH EXPORT ciphers, no common prime detected BEAST (CVE-2011-3389) not vulnerable (OK), no SSL3 or TLS1 LUCKY13 (CVE-2013-0169), experimental not vulnerable (OK) Winshock (CVE-2014-6321), experimental not vulnerable (OK) RC4 (CVE-2013-2566, CVE-2015-2808) no RC4 ciphers detected (OK) Done 2026-04-02 02:50:17 [ 56s] -->> 76.76.21.21:443 (dashboard.100ms.live) <<--
About this Scan
This scan uses testssl.sh to check for:
- Protocols: SSLv2, SSLv3, TLS 1.0, TLS 1.1, TLS 1.2, TLS 1.3
- Vulnerabilities: Heartbleed, POODLE, FREAK, Logjam, DROWN, etc.
- Cipher Suites: Weak ciphers, perfect forward secrecy (PFS) support.