SSL Certificate Analysis for dev.erinmadethis.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=b14877548.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 07, 2026

Valid Until

May 08, 2026 73 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

31:69:8D:42:44:17:39:E4:CF:17:05:9D:65:AB:3D:B6:7D:F9:75:D6:B8:05:37:86:78:27:19:6A:C0:56:80:E0

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

erinmadethis.com *.erinmadethis.com

Other domains in certificate

b14877548.com *.b14877548.com

banorama.com *.banorama.com

belgiumgames.com *.belgiumgames.com

beyondthemines.cc *.beyondthemines.cc

bicycles-dock.click *.bicycles-dock.click

card-finder-007.click *.card-finder-007.click

cccsjm.com *.cccsjm.com

chatforme.online *.chatforme.online

cleardesktalentfocus.com *.cleardesktalentfocus.com

clout.love *.clout.love

conroyconstruction.com *.conroyconstruction.com

conservationpro.com *.conservationpro.com

considerably.com *.considerably.com

crazygreencurry.com *.crazygreencurry.com

ctqzb.pro *.ctqzb.pro

deploynow.work *.deploynow.work

digitalteleportation.com *.digitalteleportation.com

djrm.com *.djrm.com

door-lock-869556250.click *.door-lock-869556250.click

dqlqwz.shop *.dqlqwz.shop

email-marketing-ie1.click *.email-marketing-ie1.click

encistays.com *.encistays.com

estoniajp55.org *.estoniajp55.org

eyujk.academy *.eyujk.academy

f64137270.com *.f64137270.com

fbcys.com *.fbcys.com

filmyai.click *.filmyai.click

forrestwater.com *.forrestwater.com

freesocialcasinode.com *.freesocialcasinode.com

gm1d1ymh.top *.gm1d1ymh.top

grupogamarra.com *.grupogamarra.com

high-pay-jobs-01-id.click *.high-pay-jobs-01-id.click

hmogcl.me *.hmogcl.me

hownowdowjones.com *.hownowdowjones.com

hyc30220.cc *.hyc30220.cc

hyc80536.cc *.hyc80536.cc

hyperhose.com *.hyperhose.com

i-softtekglobal.com *.i-softtekglobal.com

idolpose.fan *.idolpose.fan

isersyl.com *.isersyl.com

jlvbevjs.com *.jlvbevjs.com

ljs2oa.lol *.ljs2oa.lol

machaicenter.com *.machaicenter.com

n-l.party *.n-l.party