Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.kpidon.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 28, 2026
Valid Until
April 28, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:88:98:EA:58:1F:77:81:22:A6:20:BB:32:0E:DB:0B:D3:AE:46:FF:2F:39:88:50:5A:1D:40:A4:38:F5:54:C0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
betamaker.co
acmovystudios.com
aet.t.aeat.us
alamocrespo.info
albioninnovation.com
andrewtpalo.com
tools.apeark.com
orla.app.br
aprendiendogolf.com.ar
www.automastersat.com.br
ericka.axelink.fr
book.balticexpo.lv
bewith-u.com
www.boundaryhelper.com
www.brick4u.org
staging.bytesfantastic.be
catsandsoon.com
centralmotorspatos.com.br
christinesohkim.com
trikaalyasolutions.co.in
legal.lookup.codenic.app
kwongheng.com.my
computechny.com
cookpop.xyz
www.cookpop.xyz
creacionyvida.study
login.dav-epic-playground.net
stream.deft.work
deksomboon.fi
diploma-msc.com
earlibirdi.com
inpactas.ufam.edu.br
www.estebandelacruz.com
fantasycatgenerator.com
firmsoft.ai
www.frank-quincy.fr
froogy.ca
game.cafe
gem-chippo-eyyy.com
getstorier.com
getsuresure.com
hafiza.tires
huyvangan.site
nthaimernshop.id.vn
www.indu40.com
infumar.com
simulatore.iniziativenergetiche.it
www.islautopia.com
www.ivorycafe.co.za
jellycakegames.com
jongbonga.com
k-gusenbauer.com
surl.kid-ex.com
kingspawn.app
www.kpidon.com
kruskall.com
letuscake.com
www.llivro.com
app.lontratcg.com
mahjongla.win
user.makeripples.nz
www.mii-no-hitorigoto.com
docentes.mision.education
missiersenterprises.com
mydub.site
www.neoland-edu.com
www.pix.nl
pjbautoparts.com
portal.ppsms.my
priblic.net
www.pttbs.com
www.qurasense.com
rajeshkantipudi.com
rmedicharla.com
rxiapps.com
sandybutler.co.uk
www.scand-inab.se
fleetwood.scouthub.app
shipnetllc.com
www.hosei.shitatekan.com
shreejitours.co.uk
snatchlock.app
socialpostai.site
agents.solvea.ch
kura-text-audio-tools.spaceeight.net
ssalonpick.com
supersubs.uk
business.staging.svenjobs.com.au
staging.tern.app
www.theendadmin.nl
thumbnailgen.site
wahlen19.thunertagblatt.ch
thurios.co.jp
tinteggiaturatetti.it
www.toadiwibooks.com
web.trakkar.io
tyncosolutions.com
deliveroo.untied.io
development.usersmanager.com
vibechecks.xyz
Other domains in certificate