DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=bapld.town
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 23, 2026
Valid Until
July 22, 2026 68 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
60:29:73:2D:CC:B7:F0:76:C6:2A:97:2A:02:4C:6E:16:68:6A:6D:7F:75:9A:5B:F8:BB:EE:3A:3C:D5:7C:81:52
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
jszd89g.cc *.jszd89g.cc

Other domains in certificate

bapld.town *.bapld.town
beastnight.com *.beastnight.com
e1rlf8o.cc *.e1rlf8o.cc
e23p.icu *.e23p.icu
eonassp.church *.eonassp.church
evolvingera.com.cn *.evolvingera.com.cn
exzwatch.com *.exzwatch.com
fbkhusu.com *.fbkhusu.com
find-here-treatment-testing-for-check-yourself-here-9o.sbs *.find-here-treatment-testing-for-check-yourself-here-9o.sbs
fire-protection-eng06.click *.fire-protection-eng06.click
flashnutri.com *.flashnutri.com
fomwc8m.cc *.fomwc8m.cc
foodxpertsolutions.com *.foodxpertsolutions.com
fresnoswapmeet.com *.fresnoswapmeet.com
funcsgo.net *.funcsgo.net
gbdhz9f268.top *.gbdhz9f268.top
getjalalive.info *.getjalalive.info
growdiverserealtytechnow.com *.growdiverserealtytechnow.com
healthdietarticle.info *.healthdietarticle.info
hosesakti.run *.hosesakti.run
infotopia.me *.infotopia.me
islamicesg.org *.islamicesg.org
jobtopia.me *.jobtopia.me
jocnj.solutions *.jocnj.solutions
kirifilm.info *.kirifilm.info
klyb-wylcan.info *.klyb-wylcan.info
kozienice.org *.kozienice.org
kskc.me *.kskc.me
lancashire2025.com *.lancashire2025.com
makeitpump.com *.makeitpump.com
mineexchange.cc *.mineexchange.cc
mog333k.live *.mog333k.live
monto168k.live *.monto168k.live
*.io.salimahalol-blog.com *.pro.salimahalol-blog.com salimahalol-blog.com *.salimahalol-blog.com
soundtipsy.com *.soundtipsy.com
sovonextrader.net *.sovonextrader.net
sportdomainsource.com *.sportdomainsource.com
stablecreditscore.com *.stablecreditscore.com
structural-repair2-gb-mb10.click *.structural-repair2-gb-mb10.click
tambourinehouse.com *.tambourinehouse.com
tapdiverserealestatehq.com *.tapdiverserealestatehq.com
*.server.win-login.org win-login.org *.win-login.org