Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=gramota.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 13, 2026
Valid Until
April 13, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:E8:A6:20:28:28:24:6D:13:06:28:A9:23:5E:53:BC:F1:D3:5B:A0:BD:62:92:19:8D:B0:D5:91:1F:A8:C9:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
85 domains
babbwl.com
*.babbwl.com
*.backend.babbwl.com
*.dash.babbwl.com
*.dashboard.babbwl.com
*.dashs.babbwl.com
*.data.babbwl.com
*.demo.babbwl.com
*.forecast.babbwl.com
*.hostmaster.babbwl.com
*.insight.babbwl.com
*.internal.babbwl.com
*.random.babbwl.com
*.superset.babbwl.com
*.www.babbwl.com
adakbilisim.com
*.adakbilisim.com
adorass.com
*.adorass.com
aliciataylorfitness.com
*.aliciataylorfitness.com
ambeljewellry.com
*.ambeljewellry.com
*.by.certifieddrone.au
certifieddrone.au
*.certifieddrone.au
*.panel.certifieddrone.au
*.random.certifieddrone.au
containerrentals.com.au
*.containerrentals.com.au
ddl-albums.net
*.ddl-albums.net
*.leakedalbums.ddl-albums.net
*.personalprecmail.ddl-albums.net
*.sixousixmusix.ddl-albums.net
domiciliaryinnovate.com
*.domiciliaryinnovate.com
*.www.domiciliaryinnovate.com
*.cpanel.enfermagem.digital
*.customer.enfermagem.digital
enfermagem.digital
*.enfermagem.digital
*.nbg.enfermagem.digital
*.sklvnmmflfww25.enfermagem.digital
goldenluxe.store
*.goldenluxe.store
gramota.org
*.gramota.org
*.help4.gramota.org
hakaosan.bio
*.hakaosan.bio
*.api.karla-escorts.com
karla-escorts.com
*.karla-escorts.com
*.publicidad.karla-escorts.com
lakki.store
*.lakki.store
metalindia.in
*.metalindia.in
*.dns.mypkplan.com
*.hostmaster.mypkplan.com
*.mx7.mypkplan.com
mypkplan.com
*.mypkplan.com
pago.store
*.pago.store
pahire.au
*.pahire.au
shady.au
*.shady.au
sky-tube.com
*.sky-tube.com
srfiles.com
*.srfiles.com
surweo.com
*.surweo.com
tachikawa-business.com
*.tachikawa-business.com
toleoz.pl
*.toleoz.pl
tuvihoiquan.net
*.tuvihoiquan.net
*.ww12.yeat.life
yeat.life
*.yeat.life
Other domains in certificate