DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=zkoven.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 18, 2026
Valid Until
May 19, 2026 83 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:DB:C7:FB:7C:29:11:B7:92:64:78:4C:8D:0D:D5:59:C7:64:62:13:8C:5D:E9:D3:BC:0F:6F:87:E3:FB:6F:48
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
proxyhack.com *.proxyhack.com *.crm.proxyhack.com *.store.proxyhack.com *.ww1.proxyhack.com

Other domains in certificate

*.10d.2024vvip.xyz 2024vvip.xyz *.2024vvip.xyz *.hmi.2024vvip.xyz *.lam.2024vvip.xyz *.ltp.2024vvip.xyz *.mav.2024vvip.xyz *.ntt.2024vvip.xyz *.random.2024vvip.xyz *.sld.2024vvip.xyz *.ydb.2024vvip.xyz *.yto.2024vvip.xyz *.zux.2024vvip.xyz
arshad.com *.arshad.com *.baby.arshad.com *.corp.arshad.com *.facebook.arshad.com *.mian.arshad.com *.mohd.arshad.com *.resume.arshad.com *.shamsi.arshad.com
christianlandscaping.com *.christianlandscaping.com *.www.christianlandscaping.com
dayanak.com *.dayanak.com *.ww25.dayanak.com
*.admin.deepmind.sbs *.app.deepmind.sbs deepmind.sbs *.deepmind.sbs
derbymode247.live *.derbymode247.live
*.cloud.destinos.it destinos.it *.destinos.it *.dev.destinos.it *.esmtp.destinos.it *.metric.destinos.it *.rd.destinos.it *.rdweb.destinos.it *.roaming.destinos.it
gk.net.au *.gk.net.au
*.dh.lanmo.ltd *.doc.lanmo.ltd lanmo.ltd *.lanmo.ltd
*.exist.musicheritageuk.org *.ffffffffffff.musicheritageuk.org musicheritageuk.org *.musicheritageuk.org *.new.musicheritageuk.org *.ntend.musicheritageuk.org *.random.musicheritageuk.org
now-on-air.com *.now-on-air.com *.trial.now-on-air.com *.ww12.now-on-air.com *.ww25.now-on-air.com *.www.now-on-air.com
obductionpk.com.br *.obductionpk.com.br
*.backend.preciousmetalsadvice.com *.ftp.preciousmetalsadvice.com preciousmetalsadvice.com *.preciousmetalsadvice.com *.staging.preciousmetalsadvice.com *.www.preciousmetalsadvice.com
psj.au *.psj.au *.ww25.psj.au
quoid.com *.quoid.com
*.app.sprinklersystem.it sprinklersystem.it *.sprinklersystem.it
*.flow.toila.it *.server.toila.it toila.it *.toila.it
zkoven.xyz *.zkoven.xyz