SSL Certificate Analysis for uat.interlock.in - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=hartford-backgroundchecks.one

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 16, 2026

Valid Until

August 14, 2026 56 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

0B:5E:43:3F:E4:6F:C6:A4:E4:3E:1D:B4:8C:54:DA:55:EE:3F:A0:D4:D8:25:08:0D:CF:EE:B8:F7:A1:5C:03:08

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

interlock.in *.interlock.in

Other domains in certificate

hartford-backgroundchecks.one *.hartford-backgroundchecks.one

hartford-reputationaldd.net *.hartford-reputationaldd.net

hartford-reputationaldd.org *.hartford-reputationaldd.org

hisfi.dance *.hisfi.dance

iosyu.dance *.iosyu.dance

isgsalesleadership.com *.isgsalesleadership.com

iswqn.dance *.iswqn.dance

jpapt168.sbs *.jpapt168.sbs

kdnb378.top *.kdnb378.top

kellydrafting.com *.kellydrafting.com

keocap88.online *.keocap88.online

krasnodar-doc.xyz *.krasnodar-doc.xyz

loginbo2fa-auth.com *.loginbo2fa-auth.com

megavisa888.com *.megavisa888.com

metruyenonline.cyou *.metruyenonline.cyou

moonlightline.com *.moonlightline.com

motisonline.com *.motisonline.com

munaiontustiktoo.com *.munaiontustiktoo.com

murphybizadvisor.com *.murphybizadvisor.com

naijaclassmates.com *.naijaclassmates.com

nghienthethao.online *.nghienthethao.online

niagatoto.loan *.niagatoto.loan

officesupplies24.info *.officesupplies24.info

pebblecreekpizza.com *.pebblecreekpizza.com

pedagogie.blog *.pedagogie.blog

pemaluenterprises.com *.pemaluenterprises.com

peoplehues.com *.peoplehues.com

prestigepathways.xyz *.prestigepathways.xyz

sihirajaib.sbs *.sihirajaib.sbs

slot90trust.cyou *.slot90trust.cyou

slotcoin138.com *.slotcoin138.com

slotcoin138.net *.slotcoin138.net

slotcoin138.org *.slotcoin138.org

sloto69lagi.cfd *.sloto69lagi.cfd

smallaboutadult.org *.smallaboutadult.org

smallbizfundingpros.com *.smallbizfundingpros.com

smallbizloanpros.com *.smallbizloanpros.com

temirogroup.com *.temirogroup.com

theupstateshopper.com *.theupstateshopper.com

togel88toto.loan *.togel88toto.loan

tokenizelaunch.com *.tokenizelaunch.com

v23t.cyou *.v23t.cyou

vipschat.com *.vipschat.com

we77aa.com *.we77aa.com