SSL Certificate Analysis for devicehomepro.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=bgigroup.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 28, 2026

Valid Until

August 26, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A0:94:F2:C5:F5:83:CC:E9:F3:09:53:29:F9:CC:B7:5A:28:96:86:4E:DB:F6:2D:62:83:62:E9:CB:71:DF:EB:4A

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

devicehomepro.com *.devicehomepro.com *.afvgsi.devicehomepro.com

Other domains in certificate

2kmoviehd.io *.2kmoviehd.io *.random.2kmoviehd.io *.www.2kmoviehd.io

amandaslaw.org *.amandaslaw.org *.ww25.amandaslaw.org *.ww38.amandaslaw.org

an99.hiphop *.an99.hiphop *.dashboard.an99.hiphop *.dev.an99.hiphop *.m.an99.hiphop

atwooods.com *.atwooods.com

bgigroup.com *.bgigroup.com *.en.bgigroup.com

cdoni.com *.cdoni.com *.game.cdoni.com

*.download.gosoftware.com.au *.faq.gosoftware.com.au *.form-7074393561.gosoftware.com.au gosoftware.com.au *.gosoftware.com.au *.house.gosoftware.com.au *.mail.gosoftware.com.au *.remote.gosoftware.com.au

hiteire.com *.hiteire.com

*.315748bf-a284-4805-a50f-d57b0b91a28a.kidyali.info *.api.kidyali.info *.app.kidyali.info *.dev.kidyali.info kidyali.info *.kidyali.info *.members.kidyali.info *.staging.kidyali.info *.test.kidyali.info

leoch.co *.leoch.co *.random.leoch.co *.www.leoch.co

*.assets.livenysenasdaq.com *.blog.livenysenasdaq.com *.cloud.livenysenasdaq.com *.docs.livenysenasdaq.com *.files.livenysenasdaq.com *.hlnrqytx.livenysenasdaq.com livenysenasdaq.com *.livenysenasdaq.com *.mail.livenysenasdaq.com *.mobile.livenysenasdaq.com *.pay.livenysenasdaq.com *.remote.livenysenasdaq.com *.stage.livenysenasdaq.com *.static.livenysenasdaq.com *.store.livenysenasdaq.com *.test.livenysenasdaq.com *.u003ehelp.livenysenasdaq.com *.xcygtvkf.livenysenasdaq.com

nfrbuilder.info *.nfrbuilder.info *.zssywv.nfrbuilder.info

*.bestepau.se.live *.co.se.live *.expedia.se.live *.gahut.se.live *.grown.se.live *.hd.se.live *.hotmail.se.live *.iem.se.live *.jessicagylfe.se.live *.mrjet.se.live *.org.se.live *.pomodorix.se.live *.ramdevra.se.live se.live *.se.live *.sos.se.live *.wooden-living-room-table.se.live *.ww17.se.live *.ww25.se.live *.ww38.se.live

tempstaff.com.au *.tempstaff.com.au