SSL Certificate Analysis for kow.de - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=xxtv104.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 14, 2026

Valid Until

May 15, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

9A:0B:5E:FD:77:2A:F0:D1:D5:07:0C:39:B1:B0:2D:76:B7:CD:06:34:8A:4A:51:DE:D8:6E:8D:00:88:05:F5:0F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

kow.de *.kow.de *.dominik-ba.kow.de *.random.kow.de

Other domains in certificate

appledatarecovery.au *.appledatarecovery.au *.random.appledatarecovery.au *.ww38.appledatarecovery.au

audevie.immo *.audevie.immo *.random.audevie.immo

cengagae.com *.cengagae.com *.ngl.cengagae.com *.ww16.cengagae.com

*.autodiscover.clothespla.net clothespla.net *.clothespla.net *.cpanel.clothespla.net *.cpcontacts.clothespla.net *.webdisk.clothespla.net *.webmail.clothespla.net

dickgregorytribute.com *.dickgregorytribute.com

*.are.geh.us geh.us *.geh.us *.sat.geh.us *.ww16.geh.us

giftology.com.au *.giftology.com.au

goku.so *.goku.so *.ww25.goku.so

*.discoverreceiver.molinahealhcare.com molinahealhcare.com *.molinahealhcare.com

*.hostmaster.naichichi.com naichichi.com *.naichichi.com *.www.naichichi.com

nanobiotechnews.com *.nanobiotechnews.com *.www.nanobiotechnews.com

nasopharynxkarzinom.de *.nasopharynxkarzinom.de

nationalappliances.net.au *.nationalappliances.net.au *.ww38.nationalappliances.net.au

opposites.au *.opposites.au

ossiravillaurquiza.com *.ossiravillaurquiza.com *.ww25.ossiravillaurquiza.com *.ww38.ossiravillaurquiza.com

ruins.me *.ruins.me

scholarshipdp.net *.scholarshipdp.net *.ww38.scholarshipdp.net

*.shop.stocksandcoffee.com *.staging.stocksandcoffee.com stocksandcoffee.com *.stocksandcoffee.com

*.gov.tnpsc.in *.kavimani.tnpsc.in *.pyq.tnpsc.in *.stay.tnpsc.in tnpsc.in *.tnpsc.in *.ww1.tnpsc.in *.ww38.tnpsc.in *.wwww.tnpsc.in

whichcopyrighter.com.au *.whichcopyrighter.com.au

*.random.wwwprincess.com *.ww38.wwwprincess.com wwwprincess.com *.wwwprincess.com

*.smtp.xiaoliedu.com *.ww25.xiaoliedu.com *.ww38.xiaoliedu.com *.www.xiaoliedu.com xiaoliedu.com *.xiaoliedu.com

*.1.xxtv104.xyz *.ww16.xxtv104.xyz *.ww25.xxtv104.xyz xxtv104.xyz *.xxtv104.xyz