Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bdbdt.one
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:71:4B:DF:BF:47:12:0F:91:66:BA:C6:33:50:3B:F6:85:8D:28:5E:13:C2:60:F2:1F:E3:9A:CF:02:80:C4:2A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
vibrancedentistry.com
*.vibrancedentistry.com
a11.my
*.a11.my
*.api.bdbdt.one
*.app.bdbdt.one
bdbdt.one
*.bdbdt.one
*.dev.bdbdt.one
*.mail.bdbdt.one
*.test.bdbdt.one
bisabosome.com
*.bisabosome.com
courtcaseinfo.com
*.courtcaseinfo.com
*.6ef32115-90fb-4747-8e2a-096c216f04e5.equalhousing.art
*.app.equalhousing.art
equalhousing.art
*.equalhousing.art
*.gsattm.equalhousing.art
*.hostmaster.equalhousing.art
*.demo.exploremaynards.co
*.dev.exploremaynards.co
exploremaynards.co
*.exploremaynards.co
*.ghafotest.exploremaynards.co
*.dev.investors.asia
*.integration.investors.asia
investors.asia
*.investors.asia
*.blog.itsnp.org
*.certification.itsnp.org
*.discord.itsnp.org
*.group.itsnp.org
*.hosting.itsnp.org
itsnp.org
*.itsnp.org
*.mail.itsnp.org
*.sachit.itsnp.org
*.vrittechnologies.itsnp.org
*.webmail.itsnp.org
*.workshop.itsnp.org
jewelershows.com
*.jewelershows.com
*.domainchangeupdate.limosforsale.com
limosforsale.com
*.limosforsale.com
*.sitemaps.limosforsale.com
metabolism.bio
*.metabolism.bio
*.ns1.metabolism.bio
*.add.mwqfilm.buzz
mwqfilm.buzz
*.mwqfilm.buzz
*.lime.parcelshipper.com
*.nightly.parcelshipper.com
parcelshipper.com
*.parcelshipper.com
*.rds.parcelshipper.com
*.business.pcanywhere.com.au
*.dialoggroup.pcanywhere.com.au
*.old.pcanywhere.com.au
pcanywhere.com.au
*.pcanywhere.com.au
*.portal-cms.pcanywhere.com.au
*.random.pcanywhere.com.au
ratboss.site
*.ratboss.site
scorand.com
*.scorand.com
sudpung168.net
*.sudpung168.net
*.com.ultramarts.com
*.shop.ultramarts.com
ultramarts.com
*.ultramarts.com
usa-online-casinos.info
*.usa-online-casinos.info
*.ct.walterskluwer.com
*.es.walterskluwer.com
*.reporting.walterskluwer.com
*.v.walterskluwer.com
walterskluwer.com
*.walterskluwer.com
*.ww38.walterskluwer.com
*.paulareichwawww.yablogger.info
*.ww25.yablogger.info
yablogger.info
*.yablogger.info
*.yvn3cu.yablogger.info
Other domains in certificate