SSL Certificate Analysis for bbav1.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=desisexmasala.net

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 30, 2026

Valid Until

April 30, 2026 75 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

00:A3:85:89:7C:9A:11:BA:17:DA:3D:C8:F7:BD:98:7D:5D:FC:57:B7:DA:30:88:8E:0A:4F:41:0C:FF:CF:7B:28

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

bbav1.com *.bbav1.com

Other domains in certificate

*.7102ea45-8742-4dd6-a620-7139c709850f.adityamalani.xyz adityamalani.xyz *.adityamalani.xyz *.aiwriterpro.adityamalani.xyz *.writemymail.adityamalani.xyz *.www.adityamalani.xyz

atheltic.bet *.atheltic.bet

athetic.bet *.athetic.bet

blumen-bb.online *.blumen-bb.online *.cloudinary.blumen-bb.online *.development.blumen-bb.online

breadbox.studio *.breadbox.studio

childrensbetterlife.org *.childrensbetterlife.org

desisexmasala.net *.desisexmasala.net *.smtp.desisexmasala.net

durrellformayor.com *.durrellformayor.com

*.agent.e-henta.org e-henta.org *.e-henta.org *.forums.e-henta.org *.lofi.e-henta.org *.ww.e-henta.org *.ww1.e-henta.org

femialuko.org *.femialuko.org

*.29e3e53b-14c0-435a-98b4-7efd66ac1aa7.greenmedinfo.co *.analytic.greenmedinfo.co *.app.greenmedinfo.co *.bi-integration.greenmedinfo.co *.comc.greenmedinfo.co *.data.greenmedinfo.co *.demo.greenmedinfo.co *.dev.greenmedinfo.co *.docs.greenmedinfo.co *.go.greenmedinfo.co greenmedinfo.co *.greenmedinfo.co *.help.greenmedinfo.co *.hotfix-analytic.greenmedinfo.co *.ihnozww1.greenmedinfo.co *.m.greenmedinfo.co *.members.greenmedinfo.co *.share.greenmedinfo.co *.site.greenmedinfo.co *.test-data.greenmedinfo.co *.test.greenmedinfo.co *.uat.greenmedinfo.co *.vpn.greenmedinfo.co *.wazkogcvrwdev.greenmedinfo.co *.ww1.greenmedinfo.co *.ww17.greenmedinfo.co *.wwsrvuat.greenmedinfo.co

hreads.bet *.hreads.bet

kudapokerrr.com *.kudapokerrr.com *.www.kudapokerrr.com

leadsforall.site *.leadsforall.site *.www.leadsforall.site *.x-domainkey.leadsforall.site

malvintv.com *.malvintv.com

megamovies.cc *.megamovies.cc

nukim.shop *.nukim.shop

onlypyqs.com *.onlypyqs.com

pixlrexpress.com *.pixlrexpress.com

playdesi.bet *.playdesi.bet

tokotokoshindanshi.com *.tokotokoshindanshi.com

xmaslover.space *.xmaslover.space

*.sitemaps.yts.ink yts.ink *.yts.ink