Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=bilgelaboratuvar.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:E4:FA:74:AE:6D:F8:16:0A:8F:F3:C4:63:C9:B1:BA:E6:CB:61:BE:80:41:8B:EF:81:5C:B4:B9:40:3E:D0:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cubanito.it
*.cubanito.it
bilgelaboratuvar.org
*.bilgelaboratuvar.org
bitcoinhumpback.com
*.bitcoinhumpback.com
blackowned.college
*.blackowned.college
boysclub.it
*.boysclub.it
buonforte.it
*.buonforte.it
business-funding-in-uk-04.click
*.business-funding-in-uk-04.click
butterflymagazine.it
*.butterflymagazine.it
bx32v6l.net
*.bx32v6l.net
bxath.academy
*.bxath.academy
campionatieuropei.it
*.campionatieuropei.it
capitalaxis.org
*.capitalaxis.org
car-install-342932889.click
*.car-install-342932889.click
car-insurance-470688490.click
*.car-insurance-470688490.click
careersolutionsnow.live
*.careersolutionsnow.live
cbdcbay.com
*.cbdcbay.com
cenandaronioasdalartibes.shop
*.cenandaronioasdalartibes.shop
chatbump.com
*.chatbump.com
classicappareloutlet.cfd
*.classicappareloutlet.cfd
cleaning-pros.com
*.cleaning-pros.com
coccoledelgusto.com
*.coccoledelgusto.com
commsweet.net
*.commsweet.net
comwz.net
*.comwz.net
connect-sales-elements.com
*.connect-sales-elements.com
consultalinstanteporinternet-promobcperu.sbs
*.consultalinstanteporinternet-promobcperu.sbs
consumidores.it
*.consumidores.it
contogioco.it
*.contogioco.it
copiedautore.it
*.copiedautore.it
correlato.it
*.correlato.it
countryland.it
*.countryland.it
cpbfmco3.top
*.cpbfmco3.top
crappy.it
*.crappy.it
creativitaonline.it
*.creativitaonline.it
cubetto.it
*.cubetto.it
cyberwin994.top
*.cyberwin994.top
cyclefitz.click
*.cyclefitz.click
daga.gift
*.daga.gift
darksouls.it
*.darksouls.it
datanex.top
*.datanex.top
dating-for-seniors-abc.click
*.dating-for-seniors-abc.click
dc53f252a2aa4e69.com
*.dc53f252a2aa4e69.com
decentralist.xyz
*.decentralist.xyz
demoslotmaju.cfd
*.demoslotmaju.cfd
designcontest.it
*.designcontest.it
dev-domain-1.xyz
*.dev-domain-1.xyz
Other domains in certificate