Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bitbns8.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 10, 2026
Valid Until
July 09, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:60:8B:B6:26:D3:06:F6:A8:55:BB:EB:47:28:94:BD:60:0A:E1:76:03:5F:EB:B6:85:31:EE:B3:B6:57:E6:31
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
saobet.site
*.saobet.site
10mall.ro
*.10mall.ro
*.server.10mall.ro
*.apps.bapisthealth.net
bapisthealth.net
*.bapisthealth.net
*.billpay.bapisthealth.net
*.random.bapisthealth.net
*.web.bapisthealth.net
*.wildcard.bapisthealth.net
*.ww25.bapisthealth.net
*.ww38.bapisthealth.net
baskentankara.com
*.baskentankara.com
*.ww16.baskentankara.com
bitbns8.net
*.bitbns8.net
*.ww25.bitbns8.net
*.admin.cottonbox.it
cottonbox.it
*.cottonbox.it
*.demo.cottonbox.it
*.dev.cottonbox.it
*.staging.cottonbox.it
creditability.co.uk
*.creditability.co.uk
*.october.creditability.co.uk
*.pianistic.creditability.co.uk
*.admin.goldcard.it
*.autoconfig.goldcard.it
goldcard.it
*.goldcard.it
*.rdweb.goldcard.it
*.remote.goldcard.it
*.sslvpn.goldcard.it
*.apps.heavywhale.com
heavywhale.com
*.heavywhale.com
*.cpcalendars.lordoftheflies.org
lordoftheflies.org
*.lordoftheflies.org
*.random.lordoftheflies.org
*.webmail.lordoftheflies.org
*.admin.myboss.it
*.api.myboss.it
*.demo.myboss.it
myboss.it
*.myboss.it
*.backend.oilsprofit.com
oilsprofit.com
*.oilsprofit.com
*.4vo5zl0.pcsd.com
*.autodiscover.pcsd.com
*.bluedevils.pcsd.com
*.classlink.pcsd.com
*.kbsrzld.pcsd.com
pcsd.com
*.pcsd.com
*.pkp.pcsd.com
*.vpn.pcsd.com
*.x.pcsd.com
royalwin808.onl
*.royalwin808.onl
senior-car-insurance-53776.click
*.senior-car-insurance-53776.click
soc99.onl
*.soc99.onl
sqxup.ws
*.sqxup.ws
state-warehouse-670775968.click
*.state-warehouse-670775968.click
studykr.com
*.studykr.com
sunwinnn.com
*.sunwinnn.com
supera2a.com
*.supera2a.com
*.out.vodkalemon.it
*.smtps.vodkalemon.it
vodkalemon.it
*.vodkalemon.it
*.rustore.wikipediablog.com
wikipediablog.com
*.wikipediablog.com
*.hostmaster.xn--m7rr04cz54a.com
xn--m7rr04cz54a.com
*.xn--m7rr04cz54a.com
Other domains in certificate