Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=barahathawanewsupdate.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 14, 2026
Valid Until
July 13, 2026
52 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:CE:0E:52:8B:9F:AC:1E:6D:5D:63:DD:44:AA:19:C3:EF:AB:8B:9A:3C:5D:AC:D5:8D:7B:7F:37:56:17:04:ED
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
gbapps.cc
*.gbapps.cc
apkpopup.com
*.apkpopup.com
barahathawanewsupdate.com
*.barahathawanewsupdate.com
beautifulshades.in
*.beautifulshades.in
blazesaga196.info
*.blazesaga196.info
blazesaga622.info
*.blazesaga622.info
boletazo.vip
*.boletazo.vip
coin-fable.com
*.coin-fable.com
componentkini.com
*.componentkini.com
contactversorix.com
*.contactversorix.com
cyberquest171.top
*.cyberquest171.top
data-tunnel.info
*.data-tunnel.info
daytimedisco.com
*.daytimedisco.com
deals-sports-359404629.click
*.deals-sports-359404629.click
despegarvuelos.com
*.despegarvuelos.com
df08.net
*.df08.net
dreamsaga275.info
*.dreamsaga275.info
fluffnbuffpetcare.com
*.fluffnbuffpetcare.com
fotomontaze.sk
*.fotomontaze.sk
gastoys.com
*.gastoys.com
glp1ph.com
*.glp1ph.com
groupohv.com
*.groupohv.com
growrenaissance.co
*.growrenaissance.co
gxnnrc.com
*.gxnnrc.com
kopi77ertepe21.xyz
*.kopi77ertepe21.xyz
ovser.com
*.ovser.com
palashshova.com
*.palashshova.com
peakvectoraibd.company
*.peakvectoraibd.company
primepulseng.com
*.primepulseng.com
printdeliv.com
*.printdeliv.com
propertymanagementandshortterm.com
*.propertymanagementandshortterm.com
pujugoa.com
*.pujugoa.com
pumovfoqzapz.com
*.pumovfoqzapz.com
qlrno.town
*.qlrno.town
retrochampion853.top
*.retrochampion853.top
uoyphjpqzl.cc
*.uoyphjpqzl.cc
veronicadosta.com
*.veronicadosta.com
visionaliveimages.com
*.visionaliveimages.com
voyagewarrior438.top
*.voyagewarrior438.top
w13726064.com
*.w13726064.com
w13726414.com
*.w13726414.com
westartengines.com
*.westartengines.com
workwithsakic.com
*.workwithsakic.com
yourtimes.in
*.yourtimes.in
zandofoods.com
*.zandofoods.com
Other domains in certificate