Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=childrescuekenya.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 15, 2026
Valid Until
August 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A0:1D:F6:CD:26:98:29:0C:31:7F:14:5F:F3:C3:1A:46:ED:16:EC:54:C1:11:68:EF:F9:8C:6B:37:86:67:8D:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cloud-spark.team
*.cloud-spark.team
ameventures.com
*.ameventures.com
*.c3a76e3a-7c19-4699-a749-c0d55e9d5dbd.ameventures.com
*.connect.ameventures.com
*.db1.ameventures.com
*.intranet.ameventures.com
*.shop.ameventures.com
*.vpnssl.ameventures.com
*.ww6.ameventures.com
*.www.ameventures.com
*.wwww.ameventures.com
*.5go50g.apikecklungkung.org
apikecklungkung.org
*.apikecklungkung.org
apikeckotasragen.org
*.apikeckotasragen.org
*.jezuef.apikeckotasragen.org
apikecsukabumi.org
*.apikecsukabumi.org
*.s8otfo.apikecsukabumi.org
chat-ogt.com
*.chat-ogt.com
*.vpn.chat-ogt.com
childrescuekenya.com
*.childrescuekenya.com
*.org.childrescuekenya.com
*.api.doinikgonoshongbad.com
*.assets.doinikgonoshongbad.com
*.blog.doinikgonoshongbad.com
*.demo.doinikgonoshongbad.com
doinikgonoshongbad.com
*.doinikgonoshongbad.com
*.sp4qzz.doinikgonoshongbad.com
*.test.doinikgonoshongbad.com
e1cbyhc.top
*.e1cbyhc.top
*.t60oe5.e1cbyhc.top
*.cpcalendars.ebonyexperiment.com
ebonyexperiment.com
*.ebonyexperiment.com
*.vpn.ebonyexperiment.com
*.inst.kc-charbroil.com
kc-charbroil.com
*.kc-charbroil.com
*.rds.kc-charbroil.com
korankabar.com
*.korankabar.com
*.maduraunitedfc2.korankabar.com
*.www.korankabar.com
nextlevelcollision.com
*.nextlevelcollision.com
*.app.predator4k.art
*.c3jv6u.predator4k.art
*.mmeldapp.predator4k.art
predator4k.art
*.predator4k.art
*.evhaxsitemap.scentric.store
scentric.store
*.scentric.store
*.sitemaps.scentric.store
*.ab.toolhawk.business
*.administrator.toolhawk.business
*.boxberry.toolhawk.business
*.catalog.toolhawk.business
*.cloud.toolhawk.business
*.customers.toolhawk.business
*.delivery-yandex.toolhawk.business
*.developers.toolhawk.business
*.eldorado.toolhawk.business
*.guest.toolhawk.business
*.imail.toolhawk.business
toolhawk.business
*.toolhawk.business
*.web1.toolhawk.business
top1casinoplay.com
*.top1casinoplay.com
uset3r.cyou
*.uset3r.cyou
v33872.top
*.v33872.top
virtualfinancial.co
*.virtualfinancial.co
wawegaze.cloud
*.wawegaze.cloud
xpj5612.top
*.xpj5612.top
yassinebounou-ar.biz
*.yassinebounou-ar.biz
Other domains in certificate