See: https://privacyscore.org/site/33741/

Good whenever you wanna join the https everywhere campaign with a Let’s Encrypt Authority X3 from eu3.named.world
handed out from a B-grade Contiki Nano Web Server (Commodore64)
SSL/TLS compression: Not Enabled
RC4: Not Enabled
OCSP stapling: Not Enabled

Various A+ results and a B on security headers.

Various privacy related issues: https://privacyscore.org/site/33741/

B-grade status and CSP status recommendation: https://observatory.mozilla.org/analyze.html?host=zerossl.com

From the above it seems domain is not vulnerable to much of the common attacks. Server should be tested however for tiny
exchange handshake (incorrect certificate because this client doesn’t support SNI - Server sent fatal alert: handshake_failure for Win 8.1)) and to establish any exploiting the capability of the serial bootloader on the chip. Session resumption (caching) No (IDs assigned but not accepted)…nameserver -dns1.yandex.net

The site is not using Public Key Pinning to prevent attackers from using invalid certs.
Server may be vulnerable to BREACH and LUCKY13 , SWEET32 and secure client re-negotiation attacks.

9 problems alerted here: https://mxtoolbox.com/domain/zerossl.com/

reported using cold recconnaissance 3rd party scanning technique and analysis by,

polonus (volunteer website security analyst and website error-hunter)