SSL Certificate Analysis for sbbam.me - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=realtimedemo.online

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 19, 2026

Valid Until

April 19, 2026 60 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BD:12:0D:E4:34:AB:D7:23:34:BD:99:F8:B5:17:8D:A9:36:FC:4C:FA:64:1C:D2:37:7E:3D:A9:CD:72:7D:0B:D3

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

sbbam.me *.sbbam.me

Other domains in certificate

brex.cam *.brex.cam

esteelaude.com *.esteelaude.com *.hk.esteelaude.com

goldinvestment573501.icu *.goldinvestment573501.icu

*.app.hcs99.site *.demo.hcs99.site hcs99.site *.hcs99.site *.www.hcs99.site

heaterrepair357804.icu *.heaterrepair357804.icu

*.6720b8c4-c24f-4af0-8a81-78a470ca95ce.herz.no *.96e40a3c-6e65-42f7-acfd-962ba9152a8b.herz.no *.a.herz.no *.api.herz.no *.app.herz.no *.autodiscover.herz.no *.baa88ee6-cd02-45fa-95c0-a9c4949d1773.herz.no *.cloud.herz.no *.cms.herz.no *.crm.herz.no *.dev.herz.no *.fa6c5da6-4097-4bfe-9456-d1a071b7d37b.herz.no herz.no *.herz.no *.hostmaster.herz.no *.l.herz.no *.lime.herz.no *.m.herz.no *.mail.herz.no *.r.herz.no *.rd.herz.no *.rds.herz.no *.rdweb.herz.no *.remote.herz.no *.sitemap.herz.no *.vpn.herz.no *.webmail.herz.no *.whm.herz.no *.ww38.herz.no *.www.herz.no

*.arabic.mygoufoods.com *.bengali.mygoufoods.com *.dutch.mygoufoods.com *.french.mygoufoods.com *.german.mygoufoods.com *.greek.mygoufoods.com *.hindi.mygoufoods.com *.indonesian.mygoufoods.com *.italian.mygoufoods.com *.japanese.mygoufoods.com *.korean.mygoufoods.com *.m.mygoufoods.com mygoufoods.com *.mygoufoods.com *.persian.mygoufoods.com *.polish.mygoufoods.com *.portuguese.mygoufoods.com *.russian.mygoufoods.com *.thai.mygoufoods.com *.turkish.mygoufoods.com *.vietnamese.mygoufoods.com

newcastlelawyer.com.au *.newcastlelawyer.com.au

onbzdxzr.me *.onbzdxzr.me

outdoor-wooden-benches.com *.outdoor-wooden-benches.com

*.32b996b7-f9c3-4022-b52c-156ef9eed9c2.realtimedemo.online *.38.realtimedemo.online realtimedemo.online *.realtimedemo.online *.www.realtimedemo.online

rehab-facilities111728.icu *.rehab-facilities111728.icu

*.does.removed.me *.have.removed.me *.ppl.removed.me removed.me *.removed.me *.she.removed.me *.valley.removed.me *.ww25.removed.me *.you.removed.me