Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kiw.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:18:DB:C3:5A:2C:72:4E:D3:45:4A:23:3E:55:EA:F1:B5:95:F5:0F:9D:CB:8B:67:91:18:E3:9D:BC:04:62:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
practicefuaion.com
*.practicefuaion.com
*.hostmaster.practicefuaion.com
*.login.practicefuaion.com
amajshop.com
*.amajshop.com
*.cpanel.amajshop.com
begedos.com
*.begedos.com
beka.live
*.beka.live
bjc.services
*.bjc.services
calcio.vip
*.calcio.vip
*.localtmp.calcio.vip
california-missions.org
*.california-missions.org
docksandmore.com
*.docksandmore.com
*.m.docksandmore.com
*.pop.docksandmore.com
*.sitemaps.docksandmore.com
*.www.docksandmore.com
doogslife.com
*.doogslife.com
*.www.doogslife.com
elitegol.onl
*.elitegol.onl
*.www.elitegol.onl
escortslligator.com
*.escortslligator.com
galaxy.best
*.galaxy.best
*.www.galaxy.best
grahamwest.com.au
*.grahamwest.com.au
inicr7toto.net
*.inicr7toto.net
*.admin.kaithiai.com
*.api.kaithiai.com
*.app.kaithiai.com
*.assets.kaithiai.com
*.b54d401c-db51-4b62-b04c-967d0e982363.kaithiai.com
*.cadastro.kaithiai.com
*.cloud.kaithiai.com
*.demo.kaithiai.com
*.homologacao.kaithiai.com
*.hostmaster.kaithiai.com
kaithiai.com
*.kaithiai.com
*.members.kaithiai.com
*.membros.kaithiai.com
*.painel.kaithiai.com
*.random.kaithiai.com
*.rd.kaithiai.com
*.rdweb.kaithiai.com
*.remote.kaithiai.com
*.test.kaithiai.com
*.vpn.kaithiai.com
*.webmail.kaithiai.com
*.www.kaithiai.com
kiw.it
*.kiw.it
*.telelavoro.kiw.it
matterpirt.com
*.matterpirt.com
*.my.matterpirt.com
*.ww.matterpirt.com
*.ww25.matterpirt.com
*.cjrrp1eeyi.quivers.live
quivers.live
*.quivers.live
scholarshipscornor.website
*.scholarshipscornor.website
*.ww7.scholarshipscornor.website
*.m.spirittospirit.com
spirittospirit.com
*.spirittospirit.com
*.ww16.spirittospirit.com
*.ww25.spirittospirit.com
sportfeed24.com
*.sportfeed24.com
*.ww25.sportfeed24.com
*.api.westcollingswood.net
*.hostmaster.westcollingswood.net
*.m.westcollingswood.net
westcollingswood.net
*.westcollingswood.net
Other domains in certificate