Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=basicsforbasics.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 19, 2026
Valid Until
June 17, 2026
48 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:36:5A:3B:3D:BC:AF:AC:AA:0B:94:A3:CD:A6:70:4C:3E:6C:38:0B:E6:C4:0F:7C:FA:2B:7D:08:39:B5:85:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
thetime.it
*.thetime.it
*.49.thetime.it
*.hostmaster.thetime.it
*.www.thetime.it
089241.xyz
*.089241.xyz
*.6.089241.xyz
200963.xyz
*.200963.xyz
*.6.200963.xyz
300283.xyz
*.300283.xyz
*.6.300283.xyz
basicsforbasics.co
*.basicsforbasics.co
*.superset.basicsforbasics.co
*.ww38.basicsforbasics.co
businessfinanceadvisors.com
*.businessfinanceadvisors.com
*.hostmaster.businessfinanceadvisors.com
*.m.businessfinanceadvisors.com
*.mobile.businessfinanceadvisors.com
*.wap.businessfinanceadvisors.com
*.www.businessfinanceadvisors.com
creaturesofthesea.com
*.creaturesofthesea.com
*.love.creaturesofthesea.com
*.med.creaturesofthesea.com
*.pipeline.creaturesofthesea.com
fouleewu.net
*.fouleewu.net
laclassifieds.com
*.laclassifieds.com
*.random.laclassifieds.com
*.w.laclassifieds.com
*.ww25.laclassifieds.com
*.bot.lookups.com
*.fuzzy.lookups.com
*.linux.lookups.com
lookups.com
*.lookups.com
*.mail.lookups.com
*.mx.lookups.com
*.npi.lookups.com
*.twilio.lookups.com
*.ww16.lookups.com
*.ww25.lookups.com
*.ww38.lookups.com
*.www.lookups.com
*.1.newgomovies.online
*.16.newgomovies.online
*.2.newgomovies.online
*.25.newgomovies.online
*.3.newgomovies.online
*.31.newgomovies.online
*.38.newgomovies.online
*.emv.newgomovies.online
*.emv1.newgomovies.online
newgomovies.online
*.newgomovies.online
*.rustore.newgomovies.online
*.ww1.newgomovies.online
*.ww16.newgomovies.online
*.ww2.newgomovies.online
*.ww25.newgomovies.online
*.ww31.newgomovies.online
*.ww38.newgomovies.online
*.hostmaster.phant.net
phant.net
*.phant.net
*.rule34.phant.net
*.backend.ringle.it
*.intel.ringle.it
*.mail.ringle.it
ringle.it
*.ringle.it
*.superset.ringle.it
*.admin.sportyone.com
*.dvd.sportyone.com
*.new.sportyone.com
sportyone.com
*.sportyone.com
*.ww17.sportyone.com
*.ww25.sportyone.com
*.www.sportyone.com
*.mx.stay-dead.com
stay-dead.com
*.stay-dead.com
*.www.stay-dead.com
Other domains in certificate