SSL Certificate Analysis for audaybaqi.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=715926d83acdbb8d.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

March 30, 2026

Valid Until

June 28, 2026 49 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

AE:D5:B2:29:1C:4F:07:68:A9:5A:33:50:55:A6:38:13:89:62:CF:E2:66:76:CF:CD:DD:19:CB:E7:0C:87:0F:85

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

audaybaqi.com *.audaybaqi.com

Other domains in certificate

12502.co *.12502.co

22601cf1174617bc.com *.22601cf1174617bc.com

256398.top *.256398.top

278693.top *.278693.top

29637.blog *.29637.blog

53ea92d6079ce649.com *.53ea92d6079ce649.com

6699881agl1.sbs *.6699881agl1.sbs

6b4ed9c25c952061.com *.6b4ed9c25c952061.com

6e32cad1ac140ee7.com *.6e32cad1ac140ee7.com

6ff9ba30fd41a0ba.com *.6ff9ba30fd41a0ba.com

70626.wtf *.70626.wtf

715926d83acdbb8d.com *.715926d83acdbb8d.com

72200.co *.72200.co

7d3e9896344f52f6.com *.7d3e9896344f52f6.com

82mart.com *.82mart.com

835f9ca61915f9ab.com *.835f9ca61915f9ab.com

86e3e73fd9166300.com *.86e3e73fd9166300.com

909f6fe240da5019.com *.909f6fe240da5019.com

9a32d15897f4fb79.com *.9a32d15897f4fb79.com

9mbqeyhy5ywem.world *.9mbqeyhy5ywem.world

a200fhxy.top *.a200fhxy.top

a200jwm.top *.a200jwm.top

a200yhc.top *.a200yhc.top

a200yhj.top *.a200yhj.top

a200yjj.top *.a200yjj.top

a200yyq.top *.a200yyq.top

a203crxy.top *.a203crxy.top

a203dmy.top *.a203dmy.top

a203jwm.top *.a203jwm.top

a203lls.top *.a203lls.top

a203yjj.top *.a203yjj.top

a203ylxx.top *.a203ylxx.top

a203yyq.top *.a203yyq.top

a42fc674d09d4ed1.com *.a42fc674d09d4ed1.com

a46af990c28fd90e.com *.a46af990c28fd90e.com

a63304de626e5657.com *.a63304de626e5657.com

aa7b20151f3e6ce1.com *.aa7b20151f3e6ce1.com

ad947365ac1fa664.com *.ad947365ac1fa664.com

adverst.com *.adverst.com

aprilfools.lol *.aprilfools.lol

b4e3bbda6d5a79d3.com *.b4e3bbda6d5a79d3.com

besti69k.com *.besti69k.com

bin6va40x7n1r.jetzt *.bin6va40x7n1r.jetzt

bmw777kelaz.xyz *.bmw777kelaz.xyz