SSL Certificate Analysis for basicsforbasics.co - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=supersoaker.fun

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 09, 2026

Valid Until

July 08, 2026 64 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

CF:75:96:20:79:F5:99:9B:49:AB:BD:A3:5E:8D:AA:A2:8B:19:28:C4:EA:8D:72:18:E1:E7:59:5D:67:76:06:3B

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

basicsforbasics.co *.basicsforbasics.co *.airflow.basicsforbasics.co *.superset.basicsforbasics.co *.ww38.basicsforbasics.co

Other domains in certificate

*.app.atlantawines.com atlantawines.com *.atlantawines.com *.demo.atlantawines.com *.localhost.atlantawines.com *.vpn.atlantawines.com *.www.atlantawines.com

bibodu.com *.bibodu.com *.m.bibodu.com

ciminoscabinetdoors.com *.ciminoscabinetdoors.com *.extranet.ciminoscabinetdoors.com *.random.ciminoscabinetdoors.com *.users.ciminoscabinetdoors.com

gokazan.com *.gokazan.com *.mail.gokazan.com *.ww38.gokazan.com *.www.gokazan.com

*.beta.gokogle.com *.cache.gokogle.com *.classroom.gokogle.com *.client-channel.gokogle.com *.clients.gokogle.com *.corp.gokogle.com *.drive.gokogle.com *.ext.gokogle.com gokogle.com *.gokogle.com *.hostmaster.gokogle.com *.m.gokogle.com *.mail.gokogle.com *.news.gokogle.com *.ww11.gokogle.com *.ww25.gokogle.com *.ww38.gokogle.com

*.09iqk.meierman.cn *.24474273.meierman.cn *.296875.meierman.cn *.375584.meierman.cn *.4393.meierman.cn *.55996.meierman.cn *.8375.meierman.cn *.a448.meierman.cn *.bvq.meierman.cn *.ebpqbf.meierman.cn *.ej.meierman.cn *.ekepxjlx.meierman.cn *.eqx.meierman.cn *.et.meierman.cn meierman.cn *.meierman.cn *.new.meierman.cn *.pkzu09.meierman.cn *.tivnb30.meierman.cn *.x6.meierman.cn *.xttwzd.meierman.cn *.yqok3da.meierman.cn *.yzys.meierman.cn

nejez.com *.nejez.com *.ww.nejez.com

*.random.reastrearme.com reastrearme.com *.reastrearme.com *.ww16.reastrearme.com

*.api.supersoaker.fun *.app.supersoaker.fun *.assets.supersoaker.fun *.backup.supersoaker.fun *.demo.supersoaker.fun *.dev.supersoaker.fun *.hml.supersoaker.fun *.hostmaster.supersoaker.fun *.rustore.supersoaker.fun *.staging.supersoaker.fun supersoaker.fun *.supersoaker.fun *.test.supersoaker.fun *.uat.supersoaker.fun *.www.supersoaker.fun

*.assets.thebuystore.com thebuystore.com *.thebuystore.com