Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kandyblueguest.info
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 24, 2026
Valid Until
August 22, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:1D:D3:86:00:48:D6:08:89:98:C9:0E:39:3B:16:A1:56:8C:21:61:08:BC:92:D7:5A:45:26:82:8E:BE:55:6C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
mzestro.credit
*.mzestro.credit
*.admin.mzestro.credit
*.api.mzestro.credit
*.assets.mzestro.credit
*.demo.mzestro.credit
*.dev.mzestro.credit
*.mail.mzestro.credit
*.ng2pia.mzestro.credit
*.rzyrldemo.mzestro.credit
*.test.mzestro.credit
bimbiallaria.com
*.bimbiallaria.com
*.ww16.bimbiallaria.com
*.ww17.bimbiallaria.com
*.www.bimbiallaria.com
estrelajogos.com
*.estrelajogos.com
*.uat.estrelajogos.com
getamoss.com
*.getamoss.com
*.a.imsecam.org
imsecam.org
*.imsecam.org
*.test.imsecam.org
jusotown.vip
*.jusotown.vip
*.t1.jusotown.vip
*.t10.jusotown.vip
*.t13.jusotown.vip
*.t14.jusotown.vip
*.t15.jusotown.vip
*.t16.jusotown.vip
*.t17.jusotown.vip
*.t18.jusotown.vip
*.t19.jusotown.vip
*.t2.jusotown.vip
*.t20.jusotown.vip
*.t23.jusotown.vip
*.t24.jusotown.vip
*.t25.jusotown.vip
*.t26.jusotown.vip
*.t3.jusotown.vip
*.t31.jusotown.vip
*.t35.jusotown.vip
*.t36.jusotown.vip
*.t42.jusotown.vip
*.t43.jusotown.vip
*.t44.jusotown.vip
*.t45.jusotown.vip
*.t7.jusotown.vip
*.t71.jusotown.vip
*.t8.jusotown.vip
*.ww1.jusotown.vip
*.35vw68.kandyblueguest.info
*.a.kandyblueguest.info
*.aecbe0cf-903d-47b2-954b-7864d58ebf86.kandyblueguest.info
*.api.kandyblueguest.info
*.app.kandyblueguest.info
*.dev.kandyblueguest.info
kandyblueguest.info
*.kandyblueguest.info
*.www.kandyblueguest.info
laoautism.org
*.laoautism.org
*.ww25.laoautism.org
*.demo.ridgecone.com
*.iceandyears.ridgecone.com
*.in.ridgecone.com
*.kw.ridgecone.com
*.nnpilla.ridgecone.com
ridgecone.com
*.ridgecone.com
*.site.ridgecone.com
*.srv.ridgecone.com
soufugu-dh.buzz
*.soufugu-dh.buzz
*.xn--5lqu56astx.soufugu-dh.buzz
*.api.sugarboo.co
*.flw.sugarboo.co
*.mobile.sugarboo.co
*.sitemaps.sugarboo.co
sugarboo.co
*.sugarboo.co
*.ww25.sugarboo.co
*.35k65.utationforh.buzz
*.kfcus.utationforh.buzz
utationforh.buzz
*.utationforh.buzz
Other domains in certificate