Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=buyify.io
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 26, 2026
Valid Until
August 24, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:1D:99:0D:A4:ED:58:C5:E4:7B:25:78:88:38:85:1A:44:88:77:F9:EF:76:53:4D:79:12:7F:FF:55:69:B0:F8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ambari.com
*.ambari.com
*.apache.ambari.com
*.com.ambari.com
*.doc.ambari.com
*.gitlab.ambari.com
*.my.ambari.com
*.nade1.ambari.com
*.net.ambari.com
*.node2.ambari.com
*.novalocal.ambari.com
*.nsfocus.ambari.com
*.rickfin.ambari.com
*.slave1.ambari.com
*.1df03m.aivengers.school
*.6d77a738-b2b2-4865-baed-ab299e84f948.aivengers.school
*.admin.aivengers.school
aivengers.school
*.aivengers.school
*.api.aivengers.school
*.app.aivengers.school
*.assets.aivengers.school
*.backup.aivengers.school
*.dashboard.aivengers.school
*.demo.aivengers.school
*.dev.aivengers.school
*.ebiyfdemo.aivengers.school
*.kgbipapp.aivengers.school
*.m.aivengers.school
*.mailer.aivengers.school
*.marketing.aivengers.school
*.new.aivengers.school
*.qa.aivengers.school
*.qowycadmin.aivengers.school
*.secure.aivengers.school
*.staging.aivengers.school
*.stg.aivengers.school
*.uat.aivengers.school
*.uulpaapp.aivengers.school
*.v2.aivengers.school
*.vpsmjadmin.aivengers.school
*.web.aivengers.school
*.www.aivengers.school
arbolesfrutales.info
*.arbolesfrutales.info
*.backend.arbolesfrutales.info
*.beta.arbolesfrutales.info
*.webdisk.arbolesfrutales.info
bowo77i.it.com
*.bowo77i.it.com
buyify.io
*.buyify.io
*.pipeline.buyify.io
fairtrustonline.it.com
*.fairtrustonline.it.com
*.ebay.flatroofdesign.com
flatroofdesign.com
*.flatroofdesign.com
gilberttechnicalservices.com
*.gilberttechnicalservices.com
*.ww38.gilberttechnicalservices.com
*.cz.grand-pianos.org
*.de.grand-pianos.org
*.es.grand-pianos.org
*.fr.grand-pianos.org
grand-pianos.org
*.grand-pianos.org
*.ru.grand-pianos.org
hillclimbypro.info
*.hillclimbypro.info
*.rovdewlk.hillclimbypro.info
new88a8.vip
*.new88a8.vip
*.stg.new88a8.vip
*.ebay.ryudi.com
ryudi.com
*.ryudi.com
*.google-ranking.seojoy.site
*.m.seojoy.site
*.seo.seojoy.site
seojoy.site
*.seojoy.site
*.www.seojoy.site
*.api.shitcoinsummer.com
shitcoinsummer.com
*.shitcoinsummer.com
*.wildcard.xn--ykr0q.com
xn--ykr0q.com
*.xn--ykr0q.com
Other domains in certificate