SSL Certificate Analysis for devery.io - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=links.bln.hm

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 26, 2025

Valid Until

January 24, 2026 59 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BD:8C:6F:8E:5F:46:1D:53:3D:3A:51:1E:5C:98:4F:9B:5D:5A:F5:D0:47:78:6C:11:E9:4A:32:C1:F5:87:36:2E

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

devery.io

Other domains in certificate

frontgate-kongfigurator.3dcloud.io

3dindustries.it

sketch.acromwell.com

adentalls.com

adnan2307.xyz

affixcard.com

people.alexsquibbs.com

trellopowerup.alpar.com.br

www.asyncteachers.es

baic.center

baldynft.com

bastadmakerspace.se

links.bln.hm

brownbudapest.com

home.cardio-auto.com

casual-crossword.com

gt3-dev.caterermanager.app

chenganma.com

congregate.app

degenhotline.com

deseur.com

supremecycles.dynamicliquids.com

e2e2.org

www.easeyourlife.in

ecomdzonline.com

fakebook.fmr.eieio.xyz

elevatedancecentermn.com

entretien-pro.ca

www.escolademudadores.app

everestcounselingllc.com

faith2fight.com

flawless-software.co.uk

order.flexline.app

tim.gazingpensive.club

geonumismatica.com

goandtellworship.com

zekaoyunlari.griceviz.com

hosana-eric.love

job-manager-uat.hotwax.io

saojose.hrtech.com.br

app.demo.hummingbirdtech.com

hy-vee.app

zabokrecina.igt.rs

imicroapp.com

samrv14.jaredsolomon.net

jeffdelaney.me

jpcalugcugan.com

www.kabam.app

dashboard.kidsmove.app

www.kimboender.dev

kingu.dev

signup.knownuggets.com

kremallnatural.com

legumina.pl

lookbookmobile.app

www.marais.family

www.mariiasmyk.com

ballance.market2x.app

mazur.codes

dev-pay.mev.cloud

mida.menu

www.muse-makeup.com

nganyatrack.com

tiruvarur.onewaydroptaxi.co

www.ouologuem.fr

panopliadelibros.com

demo.pentech.hu

www.petamatic.com

prathamlakhani.com

www.storybook.prea-cloud.be

roseriding.com

rovantus.com

seema.ai

skepticalvet.com

edu.sols247.org

sparrowhousegames.com

ion.strollhere.com

studypoints.net

zcc.sudre.cloud

app.summitmedicalinstitute.com

www.supertonic.ch

www.taadstudio.com

selflove.takeaction.co

keyboard-tester.taknikisahyog.com

app.telecalmprotects.com

personality.theorygenerator.com

thephoenixes.us

tnylee.com

transcoug.com

trmd3.com

deeplink.tunaiku.com

www.ursem.cc

voisincapital.com

link-dev.withalysia.com

portal.wondersland.ca

wordbrix.app

xpinpoint.com

zykostudio.in

Free Cloud Credits

Get free credits to test cloud platforms