Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=basel.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F0:BF:98:13:E6:2D:B5:C6:FA:FE:2E:B2:63:0A:1D:41:10:F5:19:4A:F0:10:A6:8A:BB:29:AD:3A:7A:72:51:BD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
strikeharbor.com
*.strikeharbor.com
014957.co
*.014957.co
03624.one
*.03624.one
09564.co
*.09564.co
17615.qpon
*.17615.qpon
17927.one
*.17927.one
22d7yb.cyou
*.22d7yb.cyou
*.1.basel.au
basel.au
*.basel.au
*.pressburg.basel.au
classicflamecanada.com
*.classicflamecanada.com
dlt023.com
*.dlt023.com
elevateimpulsespace.sbs
*.elevateimpulsespace.sbs
fabriciodominio79.xyz
*.fabriciodominio79.xyz
fairportfamilyrestaurant.com
*.fairportfamilyrestaurant.com
fishmate.pro
*.fishmate.pro
fitnessbenchmark.club
*.fitnessbenchmark.club
ihdkz.gdn
*.ihdkz.gdn
imcarpentry.com.au
*.imcarpentry.com.au
keytravelnavigators.xyz
*.keytravelnavigators.xyz
lider.sbs
*.lider.sbs
liposomalbotanicals.com
*.liposomalbotanicals.com
minha-inscricao.site
*.minha-inscricao.site
mw1668s.xyz
*.mw1668s.xyz
pkkhb.one
*.pkkhb.one
pknzz.loan
*.pknzz.loan
precisely87.us
*.precisely87.us
prideditalia.com
*.prideditalia.com
promisedlandflights.xyz
*.promisedlandflights.xyz
rckrx.gdn
*.rckrx.gdn
recomm.co
*.recomm.co
regpackhyper.com
*.regpackhyper.com
regpacksynergy.com
*.regpacksynergy.com
relaxationcruises.com
*.relaxationcruises.com
riorioriobet-3b.buzz
*.riorioriobet-3b.buzz
riverschurh.co
*.riverschurh.co
rodentlabs.com
*.rodentlabs.com
rrpidiomas.app
*.rrpidiomas.app
rs10675.cc
*.rs10675.cc
rtp88.loan
*.rtp88.loan
sascaaba.space
*.sascaaba.space
serengetimarket.shop
*.serengetimarket.shop
stripchagt.com
*.stripchagt.com
sturiones.com
*.sturiones.com
taxeshandrblock.co
*.taxeshandrblock.co
worldhecogains.com
*.worldhecogains.com
Other domains in certificate