Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kanwo8.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 16, 2026
Valid Until
July 15, 2026
40 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DD:C1:5A:EA:DF:10:29:56:55:9A:9B:57:80:5E:10:48:5C:4E:76:E2:D8:55:80:F2:3B:A4:84:EE:F0:43:36:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
kanwo8.com
*.kanwo8.com
*.huazi.kanwo8.com
*.jumpdd.kanwo8.com
*.junwang.kanwo8.com
*.yoming.kanwo8.com
*.zero.kanwo8.com
*.zhenxia.kanwo8.com
*.admin.brogli.it
*.analytic.brogli.it
*.api.brogli.it
*.bigdata.brogli.it
brogli.it
*.brogli.it
*.data.brogli.it
*.demo.brogli.it
*.notexistsbackend.brogli.it
*.notexistsdemo.brogli.it
*.superset.brogli.it
englishforbeginners.ru
*.englishforbeginners.ru
enterpriseuplega.com
*.enterpriseuplega.com
factoboom.com
*.factoboom.com
*.listing.factoboom.com
feelinghm.xyz
*.feelinghm.xyz
ferienhaus-daenemark-limfjord.de
*.ferienhaus-daenemark-limfjord.de
*.mail.ferienhaus-daenemark-limfjord.de
*.random.ferienhaus-daenemark-limfjord.de
*.admin.free91go3.buzz
free91go3.buzz
*.free91go3.buzz
*.ww25.free91go3.buzz
funerarialapaz.com
*.funerarialapaz.com
gacor288wd.cfd
*.gacor288wd.cfd
gamedtower.com
*.gamedtower.com
gamexo88.fit
*.gamexo88.fit
gokijangwin.vip
*.gokijangwin.vip
kk88ii.com
*.kk88ii.com
lqrtu.town
*.lqrtu.town
ludiromanigames.com
*.ludiromanigames.com
*.amazon.newmall.life
*.ams.newmall.life
newmall.life
*.newmall.life
*.sxwj.newmall.life
*.vswws.newmall.life
*.ww25.newmall.life
*.xoax.newmall.life
*.xxxx.newmall.life
*.autodiscover.outsourcingservice.it
*.cpanel.outsourcingservice.it
outsourcingservice.it
*.outsourcingservice.it
*.webdisk.outsourcingservice.it
*.casecure-ocs.trannsunion.ca
trannsunion.ca
*.trannsunion.ca
*.amp.xhamster1.com
*.auth.xhamster1.com
*.co.xhamster1.com
*.cpanel.xhamster1.com
*.de.xhamster1.com
*.desi.xhamster1.com
*.fi.xhamster1.com
*.fr.xhamster1.com
*.hd.xhamster1.com
*.hi.xhamster1.com
*.id.xhamster1.com
*.ko.xhamster1.com
*.pt.xhamster1.com
*.tr.xhamster1.com
*.wikimedia.xhamster1.com
*.ww11.xhamster1.com
*.ww38.xhamster1.com
*.ww84.xhamster1.com
xhamster1.com
*.xhamster1.com
*.zh.xhamster1.com
Other domains in certificate