Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kazanmaya.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 01, 2026
Valid Until
August 30, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:89:D0:9A:9C:43:8C:01:F5:D8:5C:CA:84:6D:42:C9:F9:96:E5:8B:D9:C3:0B:1E:FE:FE:97:FD:0E:C5:0F:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
vkubo.cool
*.vkubo.cool
*.admin.vkubo.cool
*.api.vkubo.cool
*.app.vkubo.cool
*.assets.vkubo.cool
*.demo.vkubo.cool
*.dev.vkubo.cool
*.docs.vkubo.cool
*.external.vkubo.cool
*.intranet.vkubo.cool
*.my.vkubo.cool
*.portal.vkubo.cool
*.se1e05.vkubo.cool
*.share.vkubo.cool
*.test.vkubo.cool
*.vpn01.vkubo.cool
*.www.vkubo.cool
*.wyvwrshare.vkubo.cool
832.me
*.832.me
*.m.832.me
alipays6.boats
*.alipays6.boats
*.vc0afg.alipays6.boats
btcoinvest.digital
*.btcoinvest.digital
*.rustore.btcoinvest.digital
*.zbb5zb.btcoinvest.digital
burgundies-ocean.com
*.burgundies-ocean.com
*.yqjket.burgundies-ocean.com
cordwrap.com
*.cordwrap.com
*.ts.cordwrap.com
*.vdi.cordwrap.com
*.vpnssl.cordwrap.com
*.wildcard.cordwrap.com
*.action.ekqlzpb.cc
*.annual.ekqlzpb.cc
*.blue.ekqlzpb.cc
ekqlzpb.cc
*.ekqlzpb.cc
*.hxvaz1.ekqlzpb.cc
garansikekalahan.net
*.garansikekalahan.net
*.sitemaps.garansikekalahan.net
*.dev.ihjsss.top
ihjsss.top
*.ihjsss.top
itstglobaltrade.com
*.itstglobaltrade.com
*.rds.itstglobaltrade.com
*.remote.itstglobaltrade.com
*.api.kazanmaya.com
*.backup.kazanmaya.com
*.blog.kazanmaya.com
*.dev.kazanmaya.com
kazanmaya.com
*.kazanmaya.com
*.m.kazanmaya.com
*.mail.kazanmaya.com
*.new.kazanmaya.com
*.test.kazanmaya.com
*.ww1.kazanmaya.com
*.ww16.kazanmaya.com
*.ww25.kazanmaya.com
*.ww38.kazanmaya.com
*.enkel.mahootspirits.com
mahootspirits.com
*.mahootspirits.com
*.reddysrikar.mahootspirits.com
*.snackstervending.mahootspirits.com
*.thezuperstore.mahootspirits.com
*.id.qixir.com
*.k.qixir.com
qixir.com
*.qixir.com
*.cicd.quizllet.live
quizllet.live
*.quizllet.live
*.ww.quizllet.live
*.apps.tesinvsments.com
tesinvsments.com
*.tesinvsments.com
*.random.thecastleinnrassau.co.uk
thecastleinnrassau.co.uk
*.thecastleinnrassau.co.uk
xoso66-vn.cfd
*.xoso66-vn.cfd
Other domains in certificate