Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=k4rox.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 03, 2026
Valid Until
September 01, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
86:DA:67:69:97:42:A7:E3:EC:AB:99:1E:7A:ED:82:4A:9F:C7:2F:73:8B:BD:2D:72:1B:45:23:58:27:0E:5F:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
am2z.com
*.am2z.com
*.bitcoin-loan-insurance-hosting-seo.am2z.com
*.crmww16.am2z.com
*.gw.am2z.com
*.random.am2z.com
*.santander.am2z.com
*.talent.am2z.com
*.tcc.am2z.com
*.ww17.am2z.com
*.ww25.am2z.com
*.ww38.am2z.com
*.ww41.am2z.com
*.ww6.am2z.com
*.ww8.am2z.com
*.www.am2z.com
126flux.lol
*.126flux.lol
222774.xyz
*.222774.xyz
666c.xyz
*.666c.xyz
6c65.cc
*.6c65.cc
82190.top
*.82190.top
bmdsz1248.com
*.bmdsz1248.com
by99922.com
*.by99922.com
cgggi.my
*.cgggi.my
cnyf.org
*.cnyf.org
fertilityassortment.cyou
*.fertilityassortment.cyou
genieride.com
*.genieride.com
*.ts.genieride.com
*.zamid1-gp.genieride.com
get-ebike-deal-now.sbs
*.get-ebike-deal-now.sbs
geypb.gdn
*.geypb.gdn
hyc80618.cc
*.hyc80618.cc
hzgb.info
*.hzgb.info
in-groupe-kenya.com
*.in-groupe-kenya.com
k4rox.com
*.k4rox.com
*.merch.k4rox.com
khedma.site
*.khedma.site
kjurs.xyz
*.kjurs.xyz
kojiwellness.com
*.kojiwellness.com
kpuxi.work
*.kpuxi.work
makeyourownringtone.com
*.makeyourownringtone.com
nikonepal.com
*.nikonepal.com
organoids.io
*.organoids.io
quick-notary-hub.com
*.quick-notary-hub.com
rgnla.cc
*.rgnla.cc
rrcgn.gdn
*.rrcgn.gdn
socht.my
*.socht.my
tryskytabsystems.com
*.tryskytabsystems.com
valideer-belgie.it.com
*.valideer-belgie.it.com
*.app.vavadary27.com
*.ixbzhebybxrhgouwkp.vavadary27.com
*.m.vavadary27.com
*.mailer.vavadary27.com
*.test.vavadary27.com
*.v2.vavadary27.com
vavadary27.com
*.vavadary27.com
xkocg.gdn
*.xkocg.gdn
Other domains in certificate