Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=baskartal.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:15:9A:22:60:DC:22:90:0C:3F:D9:77:0A:AC:6B:71:A2:60:D4:06:36:0D:8E:FD:75:98:4B:E5:89:22:84:6E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
disclaim.dev
*.disclaim.dev
adamlearns.live
*.adamlearns.live
avdog2.xyz
*.avdog2.xyz
baskartal.com
*.baskartal.com
*.ww38.baskartal.com
chaoshelix.com
*.chaoshelix.com
chaosmorphis.com
*.chaosmorphis.com
cloudspherecloud.click
*.cloudspherecloud.click
club-jobs-in.today
*.club-jobs-in.today
costa-rica-vacation-packages-ca.sbs
*.costa-rica-vacation-packages-ca.sbs
dxq65.icu
*.dxq65.icu
dy799.cc
*.dy799.cc
dygepo.pro
*.dygepo.pro
dynamicconnectiveflow.sbs
*.dynamicconnectiveflow.sbs
dyqa.my
*.dyqa.my
dyspepcyn.com
*.dyspepcyn.com
e-bikes-gems-627.sbs
*.e-bikes-gems-627.sbs
fitnesscoreplus.run
*.fitnesscoreplus.run
furrytailpetshops.com
*.furrytailpetshops.com
imprint.studio
*.imprint.studio
ingatsubur88.top
*.ingatsubur88.top
ingots.net
*.ingots.net
jaads.top
*.jaads.top
klinik-fur-zahnimplantate.click
*.klinik-fur-zahnimplantate.click
licaonline.com
*.licaonline.com
magistv1.info
*.magistv1.info
pleiertech.top
*.pleiertech.top
qacaktljmolb.cc
*.qacaktljmolb.cc
*.box.royalslotsgo.com
royalslotsgo.com
*.royalslotsgo.com
*.ww25.royalslotsgo.com
sokjx.rip
*.sokjx.rip
tattootrainingguide.info
*.tattootrainingguide.info
thootisemp.com
*.thootisemp.com
three-fires.com
*.three-fires.com
trusttrailways.live
*.trusttrailways.live
turkification.com
*.turkification.com
twizylab.store
*.twizylab.store
*.backup.wildmedia.top
wildmedia.top
*.wildmedia.top
window-treatment.click
*.window-treatment.click
wuma06.com
*.wuma06.com
www75.top
*.www75.top
www98831.cc
*.www98831.cc
xelquorina.sbs
*.xelquorina.sbs
yc4675.cc
*.yc4675.cc
yourwebagency.com
*.yourwebagency.com
Other domains in certificate