SSL Certificate Analysis for dev.bilen.info - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=autoluxuryfindup.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 13, 2026

Valid Until

August 11, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D8:CA:98:62:65:CE:9E:B0:1E:C8:3B:0F:F6:16:BA:26:01:F7:02:59:4C:84:85:38:3B:94:5F:60:02:A4:A0:18

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

bilen.info *.bilen.info

Other domains in certificate

autoluxuryfindup.com *.autoluxuryfindup.com

automation-tools-1fm.click *.automation-tools-1fm.click

brainnestai.info *.brainnestai.info

gosuchat.io *.gosuchat.io

harmonizemedia.com *.harmonizemedia.com

hellyheart.info *.hellyheart.info

homiesapp.io *.homiesapp.io

iluviamatchacayi.click *.iluviamatchacayi.click

it-specialist-job-int-111.sbs *.it-specialist-job-int-111.sbs

jpfgsvab.top *.jpfgsvab.top

kanofsteelltd.com *.kanofsteelltd.com

latinationhub.com *.latinationhub.com

loveydovey.chat *.loveydovey.chat

loyalwallet.io *.loyalwallet.io

m255.vip *.m255.vip

major55wow.cyou *.major55wow.cyou

masterthelanguages.com *.masterthelanguages.com

pielmassuave.com *.pielmassuave.com

plynta.info *.plynta.info

pure-being.info *.pure-being.info

qca38.icu *.qca38.icu

qic84u.cyou *.qic84u.cyou

qil1wosw.top *.qil1wosw.top

qishe2025.com *.qishe2025.com

qjzssc.cyou *.qjzssc.cyou

qoms62qczn.top *.qoms62qczn.top

qrstuw.top *.qrstuw.top

riopallace.xyz *.riopallace.xyz

sg1.pro *.sg1.pro

slots-champion.click *.slots-champion.click

sorubizim.info *.sorubizim.info

soul-lantern.info *.soul-lantern.info

soul-pathway.info *.soul-pathway.info

squidenrouter.org *.squidenrouter.org

teknikkimya.co *.teknikkimya.co

theoption.blog *.theoption.blog

totomacauhariini.org *.totomacauhariini.org

trueeagledev.co *.trueeagledev.co

turkiler.info *.turkiler.info

userahalabs.com *.userahalabs.com

veronagame.com *.veronagame.com

wcifuy.cyou *.wcifuy.cyou

whooos.com *.whooos.com