SSL Certificate Analysis for help.grillhere.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gmile.co

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 01, 2026

Valid Until

July 30, 2026 62 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

6D:78:9A:D7:CF:D4:B2:0D:DF:6E:33:8A:86:D7:E6:42:B7:19:4F:8F:28:F5:DE:14:F7:75:BB:65:A7:80:07:28

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

grillhere.com *.grillhere.com

Other domains in certificate

49419.love *.49419.love

50917.me *.50917.me

525dc.top *.525dc.top

558446.co *.558446.co

6addadea47af2bb6.com *.6addadea47af2bb6.com

alternativerealty.com *.alternativerealty.com

clinical-trials-ranger-133.sbs *.clinical-trials-ranger-133.sbs

*.api.edspace.co edspace.co *.edspace.co *.www.edspace.co

giftfromjoyce.com *.giftfromjoyce.com

gmile.co *.gmile.co *.mail.gmile.co *.szicumdufrwebmail.gmile.co

horventa.com *.horventa.com

hp138slot.lol *.hp138slot.lol

hp138slot.xyz *.hp138slot.xyz

*.cloud.idas.it *.dashboards.idas.it idas.it *.idas.it *.mx.idas.it *.notexistsmx.idas.it *.remote.idas.it

insightsbymurmuration.com *.insightsbymurmuration.com

journeyroot.info *.journeyroot.info

kyhol.com *.kyhol.com

livorto.com *.livorto.com

mandurahnews.com.au *.mandurahnews.com.au

*.blog.marshall.tv marshall.tv *.marshall.tv

qgc6rd.cyou *.qgc6rd.cyou

qualitycareeradvisory.live *.qualitycareeradvisory.live

*.mail.sul.net *.olivais.sul.net *.radio.sul.net sul.net *.sul.net

sycanner.com *.sycanner.com

timesnewprogressive.com *.timesnewprogressive.com

*.hermes.uulc.com uulc.com *.uulc.com

vv1161.cc *.vv1161.cc

vv2283.cc *.vv2283.cc

vv5527.cc *.vv5527.cc

vv5532.cc *.vv5532.cc

vv6511.cc *.vv6511.cc

vv6685.cc *.vv6685.cc

vv6866.cc *.vv6866.cc

vv8859.cc *.vv8859.cc

vv9969.cc *.vv9969.cc

xx2779.cc *.xx2779.cc