Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kp14gqyjknsiiky0ih.top
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 26, 2025
Valid Until
March 26, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FC:F8:ED:5A:C4:34:95:E4:AF:5F:BE:73:6F:80:C5:39:5F:F6:E2:52:E9:4E:C1:D7:6D:E5:07:5B:DD:35:8A:2C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
squint.studio
*.squint.studio
*.adguard1.squint.studio
*.api.squint.studio
*.assets.squint.studio
*.contact.squint.studio
*.damqwsgx.squint.studio
*.de.squint.studio
*.demo.squint.studio
*.doh1.squint.studio
*.help.squint.studio
*.info.squint.studio
*.intranet.squint.studio
*.itqndww01.squint.studio
*.members.squint.studio
*.mobile.squint.studio
*.portal.squint.studio
*.remote.squint.studio
*.sitemap.squint.studio
*.sitemaps.squint.studio
*.store.squint.studio
*.wildcard.squint.studio
*.www.squint.studio
*.assamcareerinfo.jobnews18.com
jobnews18.com
*.jobnews18.com
*.aprnu.kp14gqyjknsiiky0ih.top
*.h977z.kp14gqyjknsiiky0ih.top
*.jjnhy.kp14gqyjknsiiky0ih.top
*.js84r.kp14gqyjknsiiky0ih.top
kp14gqyjknsiiky0ih.top
*.kp14gqyjknsiiky0ih.top
*.suxfn.kp14gqyjknsiiky0ih.top
*.wyneh.kp14gqyjknsiiky0ih.top
*.xejj3.kp14gqyjknsiiky0ih.top
*.y6aq4.kp14gqyjknsiiky0ih.top
*.yfd4t.kp14gqyjknsiiky0ih.top
*.40ce3a31-5f94-42c0-8c39-d7bd4115940a.metcari.com
*.5a21d551-4baa-42ad-b3be-d7056721d434.metcari.com
*.5e1e1a6f-2e03-48cc-b539-ad8dcc67ce93.metcari.com
*.about.metcari.com
*.account.metcari.com
*.activate.metcari.com
*.admin.metcari.com
*.api.metcari.com
*.app.metcari.com
*.aspnet.metcari.com
*.blog.metcari.com
*.brother.metcari.com
*.cabinet.metcari.com
*.client.metcari.com
*.cliente.metcari.com
*.connect.metcari.com
*.d434.metcari.com
*.gateway.metcari.com
*.j.metcari.com
*.jfiawbso.metcari.com
*.jo.metcari.com
*.jp.metcari.com
*.m.metcari.com
*.mail.metcari.com
*.members.metcari.com
metcari.com
*.metcari.com
*.new.metcari.com
*.oxrsamail.metcari.com
*.partner.metcari.com
*.piffvww31.metcari.com
*.portal.metcari.com
*.pweuwabout.metcari.com
*.rdweb.metcari.com
*.remote.metcari.com
*.remoto.metcari.com
*.secure.metcari.com
*.shop.metcari.com
*.ssl.metcari.com
*.sso.metcari.com
*.staging.metcari.com
*.store.metcari.com
*.test.metcari.com
*.uuznkxangjm.metcari.com
*.vpn.metcari.com
*.vpn2.metcari.com
*.vpnssl.metcari.com
*.ww1.metcari.com
*.ww25.metcari.com
*.ww31.metcari.com
*.ww6.metcari.com
*.www.metcari.com
Other domains in certificate