Open
Cached
·
just now
79/100
SECURITY SCORE
Certificate Information
Subject
CN=kbhgames.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 30, 2026
Valid Until
April 30, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:C1:B2:CB:6F:F2:01:F0:55:A4:2F:5F:3B:22:F7:83:C8:C0:E4:66:C1:BB:3B:B3:FC:30:EB:FB:5A:21:F4:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
edoven.com
*.edoven.com
006716.vip
*.006716.vip
04jvm7.shop
*.04jvm7.shop
0nla4i.shop
*.0nla4i.shop
0qj2f1.shop
*.0qj2f1.shop
0xoly5.shop
*.0xoly5.shop
10vt9x.shop
*.10vt9x.shop
15756.co
*.15756.co
16lo41.shop
*.16lo41.shop
1rfts2.shop
*.1rfts2.shop
275468.vip
*.275468.vip
4-vents.com
*.4-vents.com
591kan1.com
*.591kan1.com
73378.pizza
*.73378.pizza
9963717.pizza
*.9963717.pizza
bestfurnituredeals.site
*.bestfurnituredeals.site
bir123.lol
*.bir123.lol
bvrqqk.shop
*.bvrqqk.shop
carpet3-mx-yshkin.click
*.carpet3-mx-yshkin.click
casino-vulkan-top10.xyz
*.casino-vulkan-top10.xyz
drpurejoie.xyz
*.drpurejoie.xyz
financial-terms.com
*.financial-terms.com
jaagi1.com
*.jaagi1.com
kbhgames.net
*.kbhgames.net
keyinsuranceagency.com
*.keyinsuranceagency.com
mediamaxnetworkprojects.com
*.mediamaxnetworkprojects.com
menswearhub.site
*.menswearhub.site
menusifuapp.com
*.menusifuapp.com
meqira.com
*.meqira.com
mercy4d2k.cfd
*.mercy4d2k.cfd
movesportswear.com
*.movesportswear.com
movierush.in
*.movierush.in
muvewithus.com
*.muvewithus.com
mycityhomeloans.com
*.mycityhomeloans.com
myvisasolutionshc.com
*.myvisasolutionshc.com
myvisasolutionshealthcare.com
*.myvisasolutionshealthcare.com
newamzsparks.com
*.newamzsparks.com
newecochillers.com
*.newecochillers.com
newgstalent.com
*.newgstalent.com
newlsarespond.com
*.newlsarespond.com
nouveaumanagement.com
*.nouveaumanagement.com
nsfw.tw
*.nsfw.tw
nuclearpowerday.com
*.nuclearpowerday.com
onceuponachildhood.com
*.onceuponachildhood.com
pamelectronix.com
*.pamelectronix.com
Other domains in certificate