Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kp20.video
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 05, 2026
Valid Until
May 06, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
92:A9:11:78:C5:0D:F2:8B:EE:73:54:3A:55:F9:D5:76:A2:C1:4B:2D:0D:09:F3:34:35:54:93:56:B1:2C:97:9F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lally.it
*.lally.it
kp20.video
*.kp20.video
kredi-doga.online
*.kredi-doga.online
kshnpouchco.com
*.kshnpouchco.com
landscape-services-295777636.click
*.landscape-services-295777636.click
landuser.com
*.landuser.com
lap-band562860.icu
*.lap-band562860.icu
laserhairremoval.buzz
*.laserhairremoval.buzz
latelierdelaphoto.com
*.latelierdelaphoto.com
lattice.money
*.lattice.money
leadershipcoaching199500.icu
*.leadershipcoaching199500.icu
leadershiptraining046964.icu
*.leadershiptraining046964.icu
learnflow.co
*.learnflow.co
lejuyy.com
*.lejuyy.com
lin-sec.xyz
*.lin-sec.xyz
removecarbon.org
*.removecarbon.org
reodat.org
*.reodat.org
revealcrypto.com
*.revealcrypto.com
revivecash.com
*.revivecash.com
rfexpansion.com
*.rfexpansion.com
rhytor.top
*.rhytor.top
rickdavisdds.com
*.rickdavisdds.com
risparmiati.it
*.risparmiati.it
rnqelo.net
*.rnqelo.net
roflcats.com
*.roflcats.com
roofing-companies-001.cfd
*.roofing-companies-001.cfd
royalia.com
*.royalia.com
rpeq-pro.ca
*.rpeq-pro.ca
rtp13-mimi303.xyz
*.rtp13-mimi303.xyz
rtpdubai69-hints1.sbs
*.rtpdubai69-hints1.sbs
rtplisa-jp2.sbs
*.rtplisa-jp2.sbs
rtplisa-mantap1.sbs
*.rtplisa-mantap1.sbs
rtpliveangkasa338.click
*.rtpliveangkasa338.click
rtvrm.tv
*.rtvrm.tv
russians.it
*.russians.it
rytmv.bid
*.rytmv.bid
s8luck.xyz
*.s8luck.xyz
sangar77-opq.xyz
*.sangar77-opq.xyz
sarti.co
*.sarti.co
sase-gartner-376414573.click
*.sase-gartner-376414573.click
sase-gartner-633793321.click
*.sase-gartner-633793321.click
sasidigital.info
*.sasidigital.info
sassyjackiexoxo.com
*.sassyjackiexoxo.com
satcomorbit.com
*.satcomorbit.com
satisfystudio.info
*.satisfystudio.info
Other domains in certificate