Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=babbermouth.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 26, 2025
Valid Until
March 26, 2026
42 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:3C:58:9F:15:CB:37:EA:5F:A5:82:A8:D2:85:4A:6D:D5:13:4B:04:49:B2:B5:38:B2:F9:B4:B6:E8:D1:A5:CA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
85 domains
aa1805.com
*.aa1805.com
136.info
*.136.info
*.140.136.info
*.215.136.info
*.255.136.info
*.ww38.136.info
1800flowerd.com
*.1800flowerd.com
babbermouth.net
*.babbermouth.net
*.random.babbermouth.net
ehandys.de
*.ehandys.de
ethosportal.com
*.ethosportal.com
hackertryper.net
*.hackertryper.net
*.random.hackertryper.net
kaigai-anntena.site
*.kaigai-anntena.site
*.mta-sts.kaigai-anntena.site
*.www.kaigai-anntena.site
kv614.click
*.kv614.click
*.ci.luluhei123.com
*.comwww.luluhei123.com
luluhei123.com
*.luluhei123.com
*.random.luluhei123.com
madruga.bet
*.madruga.bet
mstrading.com
*.mstrading.com
nauanalima.com
*.nauanalima.com
*.random.nauanalima.com
nazarestaurant.co.uk
*.nazarestaurant.co.uk
*.random.nazarestaurant.co.uk
*.ww38.nazarestaurant.co.uk
*.files.platyfish.com
platyfish.com
*.platyfish.com
pqornhub.com
*.pqornhub.com
*.jakarta.siap-ppbd.com
*.jambi.siap-ppbd.com
*.jateng.siap-ppbd.com
*.kalsel.siap-ppbd.com
*.klaten.siap-ppbd.com
*.lamongan.siap-ppbd.com
*.mataram.siap-ppbd.com
*.ntt.siap-ppbd.com
siap-ppbd.com
*.siap-ppbd.com
*.gists.slammed.com
*.m.slammed.com
*.mcrdc.slammed.com
*.random.slammed.com
slammed.com
*.slammed.com
*.ww25.slammed.com
*.yammed.slammed.com
*.hostmaster.sonomavillageapartments.com
sonomavillageapartments.com
*.sonomavillageapartments.com
*.www.sonomavillageapartments.com
teasing.com.au
*.teasing.com.au
uscic.org
*.uscic.org
uvaurn.org
*.uvaurn.org
*.ww25.uvaurn.org
veritea.com
*.veritea.com
xn--939au0g8wmvvenxbg8hw7s.com
*.xn--939au0g8wmvvenxbg8hw7s.com
yadboro.com.au
*.yadboro.com.au
*.dns1.yjerk.com
yjerk.com
*.yjerk.com
Other domains in certificate