DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=pensi.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 11, 2026
Valid Until
May 12, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:EB:60:5B:BB:6F:83:13:C0:2E:1E:0D:36:6A:D1:05:E0:63:F0:6F:65:10:21:1C:97:8B:A8:33:4E:E5:8B:C0
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
kkplus.bet *.kkplus.bet *.play.kkplus.bet

Other domains in certificate

abdelrhmangazea.com *.abdelrhmangazea.com *.anyconnect.abdelrhmangazea.com *.asa.abdelrhmangazea.com *.courses.abdelrhmangazea.com *.sslvpn.abdelrhmangazea.com *.vpn1.abdelrhmangazea.com *.www.abdelrhmangazea.com
allgermanshepherds.com *.allgermanshepherds.com *.backup.allgermanshepherds.com *.crm.allgermanshepherds.com *.old.allgermanshepherds.com *.ww38.allgermanshepherds.com
artposter.com *.artposter.com *.hosting.artposter.com *.hpc.artposter.com
*.api.evertonein.co.uk *.app.evertonein.co.uk *.cricket.evertonein.co.uk evertonein.co.uk *.evertonein.co.uk *.ww1.evertonein.co.uk *.www.evertonein.co.uk
*.astrahan.gidrolog.com gidrolog.com *.gidrolog.com *.zelenodolsk.gidrolog.com
*.autoconfig.hbabes.xyz hbabes.xyz *.hbabes.xyz
homosexualism.com *.homosexualism.com *.www.homosexualism.com
*.m.mc168.bet mc168.bet *.mc168.bet *.random.mc168.bet
*.autoconfig.numpanglari.click numpanglari.click *.numpanglari.click
*.aluno.pensi.com *.ciscoasa.pensi.com pensi.com *.pensi.com
photographframes.uk *.photographframes.uk *.staging.photographframes.uk
*.on.qoo.de *.playground-stage.qoo.de *.q.qoo.de qoo.de *.qoo.de
*.photos.rtplive1.online rtplive1.online *.rtplive1.online *.www.rtplive1.online
*.authsmtp.sheltering.net *.gw.sheltering.net sheltering.net *.sheltering.net
*.bbs.sieuthilienquan.com *.com.sieuthilienquan.com sieuthilienquan.com *.sieuthilienquan.com *.ww25.sieuthilienquan.com *.ww38.sieuthilienquan.com
*.admin.skyvvips.icu *.app.skyvvips.icu *.portal.skyvvips.icu *.shop.skyvvips.icu skyvvips.icu *.skyvvips.icu
*.rczhl.sqlgglloud.xyz sqlgglloud.xyz *.sqlgglloud.xyz
*.emojiscavengerhunt.withgooogle.com *.learndigital.withgooogle.com *.stitch.withgooogle.com withgooogle.com *.withgooogle.com
*.7.x1119.cc *.m.x1119.cc x1119.cc *.x1119.cc