Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=babelounge.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B5:C5:AE:81:04:8B:EB:92:D8:C9:91:67:B2:1B:7E:F8:1B:1A:8A:99:A5:34:30:26:BF:75:C7:0A:03:CE:5F:B2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cultorweb.com
*.cultorweb.com
*.cdn.cultorweb.com
*.random.cultorweb.com
*.team.cultorweb.com
*.ww17.cultorweb.com
*.ww38.cultorweb.com
*.www.cultorweb.com
airconditionersonline.co
*.airconditionersonline.co
*.ww38.airconditionersonline.co
avancini.it
*.avancini.it
*.backend.avancini.it
*.dashboard.avancini.it
*.remote.avancini.it
*.superset.avancini.it
*.acdivrlb.babelounge.co.uk
babelounge.co.uk
*.babelounge.co.uk
*.hzvwctjb.babelounge.co.uk
barnhilldesk.com
*.barnhilldesk.com
*.cdn.barnhilldesk.com
*.cit.barnhilldesk.com
*.mail.barnhilldesk.com
*.mobile.barnhilldesk.com
*.ns1.barnhilldesk.com
*.sandbox.barnhilldesk.com
*.webmail.barnhilldesk.com
*.ww16.barnhilldesk.com
*.ww38.barnhilldesk.com
bonefire.com
*.bonefire.com
*.clarkcountynv.bonefire.com
*.green.bonefire.com
*.health.bonefire.com
*.random.bonefire.com
*.vendor.bonefire.com
buickenclave.com
*.buickenclave.com
ccchhh9.cc
*.ccchhh9.cc
*.www.ccchhh9.cc
clonepla.net
*.clonepla.net
*.c10r.facebookgratis.com
facebookgratis.com
*.facebookgratis.com
*.free.facebookgratis.com
*.jenkins.facebookgratis.com
*.support.facebookgratis.com
gblwdz.skin
*.gblwdz.skin
*.gl.gblwdz.skin
*.hgl.gblwdz.skin
*.noz.gblwdz.skin
katyseats.com
*.katyseats.com
*.cdn.kolerengines.com
*.forum.kolerengines.com
kolerengines.com
*.kolerengines.com
michaelkrs.com
*.michaelkrs.com
*.ww38.michaelkrs.com
*.app.mused.it
mused.it
*.mused.it
*.rdweb.mused.it
*.remote.mused.it
*.sslvpn.mused.it
*.books.palaustudio.com
*.cdn.palaustudio.com
*.mx.palaustudio.com
palaustudio.com
*.palaustudio.com
seedrama.pro
*.seedrama.pro
*.ww16.seedrama.pro
*.ww38.seedrama.pro
sharjah.com.au
*.sharjah.com.au
theamericanlegion.org
*.theamericanlegion.org
*.com.wwwhydroquebec.com
*.ildcard.wwwhydroquebec.com
*.ww38.wwwhydroquebec.com
wwwhydroquebec.com
*.wwwhydroquebec.com
Other domains in certificate