Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=baruc179.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 01, 2026
Valid Until
April 01, 2026
43 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:5B:F4:8F:A5:FD:77:BC:54:10:86:A4:6D:6F:82:AD:AC:E0:D6:75:F9:DA:D2:86:19:D8:63:71:4F:10:12:A6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lady.de
*.lady.de
*.cloud.lady.de
*.m.lady.de
*.25.appbot.site
appbot.site
*.appbot.site
*.beta.appbot.site
*.billing.appbot.site
*.docs.appbot.site
*.jenkins.appbot.site
*.legacy.appbot.site
*.sabapremierproperdocs.appbot.site
*.uptime.appbot.site
*.vpn.appbot.site
*.ww16.appbot.site
applycitycard.com
*.applycitycard.com
babi.studio
*.babi.studio
*.random.babi.studio
baruc179.click
*.baruc179.click
bbr7bet.com
*.bbr7bet.com
*.ww38.bbr7bet.com
eventures.com.au
*.eventures.com.au
*.ww11.eventures.com.au
flyy1.xyz
*.flyy1.xyz
glucosezonepro.com
*.glucosezonepro.com
*.ww25.glucosezonepro.com
*.www.glucosezonepro.com
gpsmania.com
*.gpsmania.com
*.a.greenho.club
greenho.club
*.greenho.club
hattiehats.com
*.hattiehats.com
himonya-terrace.com
*.himonya-terrace.com
inzanewatertaxis.com.au
*.inzanewatertaxis.com.au
kindleantiquarian.com
*.kindleantiquarian.com
*.ww38.kindleantiquarian.com
missy.ai
*.missy.ai
pbu.au
*.pbu.au
rapi888.space
*.rapi888.space
*.ww25.rapi888.space
*.ww38.rapi888.space
rjttbet9.click
*.rjttbet9.click
*.94c7414d9e03.skayalord8.click
*.cpcalendars.skayalord8.click
skayalord8.click
*.skayalord8.click
slammerz.net
*.slammerz.net
*.ww25.slammerz.net
sprayguider.com
*.sprayguider.com
teganfurniture.net
*.teganfurniture.net
*.aarp.thehartforf.com
*.service.thehartforf.com
thehartforf.com
*.thehartforf.com
*.ww1.thehartforf.com
*.ww38.thehartforf.com
theinnatthecrossroadslakecitysc.com
*.theinnatthecrossroadslakecitysc.com
*.www.theinnatthecrossroadslakecitysc.com
themvn.studio
*.themvn.studio
upsethichotline.com
*.upsethichotline.com
*.my.vague.world
*.ns1.vague.world
*.shop.vague.world
vague.world
*.vague.world
virtablx.co
*.virtablx.co
Other domains in certificate