SSL Certificate Analysis for axejd.basa8pc.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=huoan.net

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 26, 2026

Valid Until

August 24, 2026 70 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

06:D2:09:76:53:EE:4A:9C:C8:7B:8D:ED:CA:84:65:37:D6:13:87:88:17:F2:67:00:C7:97:2F:68:5F:AF:EB:90

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

basa8pc.com *.basa8pc.com *.axejd.basa8pc.com *.jpcff.basa8pc.com *.ocuqh.basa8pc.com

Other domains in certificate

1s2xj7.top *.1s2xj7.top *.998-23y37hy7wehfn8wejyfiusdfmjnid.1s2xj7.top

*.admin.dtc-code.com *.demo.dtc-code.com dtc-code.com *.dtc-code.com *.ww12.dtc-code.com

elmont.online *.elmont.online

*.ads.goole.in *.book.goole.in *.bussness.goole.in *.classrom.goole.in *.classroom.goole.in *.console.goole.in *.forms.goole.in goole.in *.goole.in *.mahadbtmahait.goole.in *.maps.goole.in *.meet.goole.in *.raj.goole.in *.sites.goole.in *.webmail.goole.in

huddersfieldnews.co.uk *.huddersfieldnews.co.uk

*.316.huoan.net *.457.huoan.net *.a.huoan.net *.apm.huoan.net *.bh.huoan.net *.dsl.huoan.net *.foq.huoan.net *.fr.huoan.net huoan.net *.huoan.net *.pst.huoan.net *.rjg.huoan.net *.s.huoan.net *.syw.huoan.net *.tf.huoan.net *.ti.huoan.net *.uqc.huoan.net *.uun.huoan.net *.ww25.huoan.net *.www.huoan.net *.zmv.huoan.net

jietuono1.com *.jietuono1.com *.www.jietuono1.com

johnnytobacconaut.com *.johnnytobacconaut.com *.stage.johnnytobacconaut.com

kbk88.bet *.kbk88.bet

moragame.be *.moragame.be

*.app.mywalletchain.com *.gitlab.mywalletchain.com mywalletchain.com *.mywalletchain.com *.remote.mywalletchain.com

oggyhouse.store *.oggyhouse.store

onbuka.fun *.onbuka.fun

ordercod.online *.ordercod.online

*.contact.sacramentogoldfc.org sacramentogoldfc.org *.sacramentogoldfc.org *.support.sacramentogoldfc.org

*.cloud.skidie.com skidie.com *.skidie.com

*.civ.starkiddies.com *.cm.starkiddies.com *.ke.starkiddies.com *.naijacontests.starkiddies.com starkiddies.com *.starkiddies.com *.tz.starkiddies.com *.zm.starkiddies.com