SSL Certificate Analysis for gradea.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gihph.cc

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 04, 2026

Valid Until

May 05, 2026 72 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

64:3C:86:53:EF:B0:27:1C:17:8F:15:1C:5B:75:8C:62:38:D9:9B:B7:F1:35:48:30:7D:30:C4:32:E8:10:EC:F2

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

gradea.it *.gradea.it

Other domains in certificate

gihph.cc *.gihph.cc

gnnhealthyliving.ca *.gnnhealthyliving.ca

go88.cologne *.go88.cologne

goldenbetvip.com *.goldenbetvip.com

gordonferguson.com *.gordonferguson.com

gossipgazespot.live *.gossipgazespot.live

gossipkeyspot.live *.gossipkeyspot.live

gossipleaguehive.live *.gossipleaguehive.live

gossiploopecho.live *.gossiploopecho.live

gossipsightscene.live *.gossipsightscene.live

gossipspanscript.live *.gossipspanscript.live

gossipsparklechase.live *.gossipsparklechase.live

governments.it *.governments.it

gowithme.it *.gowithme.it

goxp3talent.com *.goxp3talent.com

grade-taktik88.my *.grade-taktik88.my

graduaid.info *.graduaid.info

grandlakehomes.estate *.grandlakehomes.estate

greatproduct.it *.greatproduct.it

greenfrog.us *.greenfrog.us

groomingpet.it *.groomingpet.it

gscdesigns.net *.gscdesigns.net

gtmag.co.za *.gtmag.co.za

gutezaehne.com *.gutezaehne.com

gwh8262.cc *.gwh8262.cc

hacketteu.com *.hacketteu.com

haha69rtp.xyz *.haha69rtp.xyz

halloween31.net *.halloween31.net

happycake.it *.happycake.it

hardly.it *.hardly.it

healthslm.com *.healthslm.com

herber.it *.herber.it

hgath.cc *.hgath.cc

hi88vip.click *.hi88vip.click

hif.it *.hif.it

hizcoin.vip *.hizcoin.vip

hlopera.net *.hlopera.net

holdbabe.com *.holdbabe.com

holidayonthebeach.it *.holidayonthebeach.it

home-lights-th-3nd.click *.home-lights-th-3nd.click

hometec.it *.hometec.it

hotelperfamiglie.it *.hotelperfamiglie.it

hotelpersingle.it *.hotelpersingle.it

hotelslist.it *.hotelslist.it