SSL Certificate Analysis for kitchensets.in - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=invircible.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 20, 2026

Valid Until

August 18, 2026 77 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

91:8A:6B:A9:A0:68:89:1D:67:E2:6A:35:40:E2:0F:16:7F:22:1D:11:B2:84:85:13:A3:1A:84:07:96:42:55:FE

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

kitchensets.in *.kitchensets.in *.265e0d4d-378c-4d8b-9cc4-fe239a734ff7.kitchensets.in *.58de5e06-107e-425c-816f-c950b7027749.kitchensets.in *.www.kitchensets.in

Other domains in certificate

championschoolillinois.com *.championschoolillinois.com *.m.championschoolillinois.com *.www.championschoolillinois.com

*.booking.coconutcars.com coconutcars.com *.coconutcars.com

*.analytics.invernali.it *.api.invernali.it *.app.invernali.it *.data.invernali.it *.hostmaster.invernali.it invernali.it *.invernali.it *.report.invernali.it *.superset.invernali.it

*.co.invircible.com *.ftp.invircible.com invircible.com *.invircible.com *.perfection.invircible.com

kimedegnan.com *.kimedegnan.com *.mail.kimedegnan.com *.www.kimedegnan.com

*.ci.launchsphereedge.com *.cicd.launchsphereedge.com launchsphereedge.com *.launchsphereedge.com *.pipeline-staging.launchsphereedge.com *.sitemap.launchsphereedge.com *.sitemaps.launchsphereedge.com *.ww1.launchsphereedge.com *.ww12.launchsphereedge.com *.ww7.launchsphereedge.com *.www.launchsphereedge.com

*.api.loven.it *.app.loven.it *.backend.loven.it *.bi.loven.it *.dashboard.loven.it *.demo.loven.it *.dev.loven.it *.development.loven.it *.hostmaster.loven.it *.intelligence.loven.it loven.it *.loven.it *.n.loven.it *.postmaster.loven.it *.redash.loven.it *.remote.loven.it *.staging.loven.it *.superset.loven.it *.test.loven.it *.www.loven.it

mb88.pro *.mb88.pro

*.k.minbao.com *.longjianghui.minbao.com minbao.com *.minbao.com

*.59gaku.orlandoai.top *.api.orlandoai.top *.app.orlandoai.top *.backup.orlandoai.top *.d.orlandoai.top *.dashboard.orlandoai.top *.dev.orlandoai.top *.fbd66650-378f-447e-8c1a-bb8cc8d33f11.orlandoai.top *.mail.orlandoai.top *.mailer.orlandoai.top *.marketing.orlandoai.top orlandoai.top *.orlandoai.top *.qa.orlandoai.top *.staging.orlandoai.top *.stg.orlandoai.top *.web.orlandoai.top

parinama.studio *.parinama.studio

speedexdelivery.org *.speedexdelivery.org

suplemmenttos.shop *.suplemmenttos.shop