SSL Certificate Analysis for gogram.tech - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=freshgreens.info

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 02, 2026

Valid Until

April 02, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

61:7F:C3:26:CF:BE:FE:40:E0:FF:0C:54:A0:3E:07:D0:A4:03:D6:2F:CD:15:93:A0:8C:2D:59:38:C4:48:C6:12

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

gogram.tech *.gogram.tech *.ww38.gogram.tech

Other domains in certificate

*.admin.beautychickerotic.xyz *.api.beautychickerotic.xyz beautychickerotic.xyz *.beautychickerotic.xyz *.emv1.beautychickerotic.xyz *.m.beautychickerotic.xyz *.mail.beautychickerotic.xyz *.mautic.beautychickerotic.xyz *.sitemaps.beautychickerotic.xyz *.wildcard.beautychickerotic.xyz *.ww1.beautychickerotic.xyz *.ww25.beautychickerotic.xyz *.x-domainkey.beautychickerotic.xyz

*.admin.bi-si777.xyz *.aizhan.bi-si777.xyz bi-si777.xyz *.bi-si777.xyz *.d.bi-si777.xyz *.hk.bi-si777.xyz *.ww25.bi-si777.xyz *.ww38.bi-si777.xyz *.www.bi-si777.xyz

blackmoscato.com *.blackmoscato.com *.fun.blackmoscato.com *.myspace.blackmoscato.com *.nl.blackmoscato.com *.test.blackmoscato.com

*.analytic-alpha.bokep360.club *.analytic-integration.bokep360.club *.autodiscover.bokep360.club *.bi-alpha.bokep360.club *.blog.bokep360.club bokep360.club *.bokep360.club *.mta-sts.bokep360.club *.tv1.bokep360.club *.uat-analytics.bokep360.club *.webs-x1.bokep360.club *.z4.bokep360.club

*.6a9ed80d-f037-4aef-a509-86082d5b39ef.brrairpx.xyz brrairpx.xyz *.brrairpx.xyz *.www.brrairpx.xyz

freshgreens.info *.freshgreens.info *.mail.freshgreens.info

funeralexpenseinsurance.xyz *.funeralexpenseinsurance.xyz *.ww25.funeralexpenseinsurance.xyz

*.dev.graduate472.fun graduate472.fun *.graduate472.fun

*.dash.mammotermoin.de mammotermoin.de *.mammotermoin.de *.nordrhein.mammotermoin.de *.www.mammotermoin.de

*.aemmobile.nutricentre.com *.aspdotnetstorefront.nutricentre.com *.ffffffffffff.nutricentre.com nutricentre.com *.nutricentre.com *.rds3.nutricentre.com *.services.nutricentre.com *.supplements.nutricentre.com *.webdisk.nutricentre.com *.ww99.nutricentre.com *.www.nutricentre.com *.www1.nutricentre.com

sharynalfonsi.com *.sharynalfonsi.com *.ww16.sharynalfonsi.com

*.agents.visionwager.net *.mobile.visionwager.net visionwager.net *.visionwager.net *.wager.visionwager.net *.ww38.visionwager.net *.xechfmobile.visionwager.net

*.ww25.wwwkisscat.xyz wwwkisscat.xyz *.wwwkisscat.xyz

*.ww38.x218.xyz x218.xyz *.x218.xyz