Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kabelmail.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 27, 2026
Valid Until
August 25, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5C:73:08:A4:75:60:50:32:CC:3F:5C:61:DC:DD:7E:4B:B5:77:A0:CF:4A:3C:8E:D5:61:42:76:07:7E:01:C5:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
sleazyfork.com
*.sleazyfork.com
*.go.sleazyfork.com
*.random.sleazyfork.com
*.wildcard.sleazyfork.com
*.ww16.sleazyfork.com
*.ww2.sleazyfork.com
*.ww25.sleazyfork.com
colliercountyappraiser.com
*.colliercountyappraiser.com
*.ww38.colliercountyappraiser.com
*.dh0j2gbg3zau.getrich-818cwx.sbs
getrich-818cwx.sbs
*.getrich-818cwx.sbs
hombresymujeres.it
*.hombresymujeres.it
hotelinmontagna.it
*.hotelinmontagna.it
jackall.it
*.jackall.it
jnesd.qpon
*.jnesd.qpon
*.001.kabelmail.com
*.autodiscover.kabelmail.com
*.cicd.kabelmail.com
*.demos.kabelmail.com
*.exmail.kabelmail.com
*.fj.kabelmail.com
*.imap.kabelmail.com
kabelmail.com
*.kabelmail.com
*.nsd.kabelmail.com
*.pipeline.kabelmail.com
*.staging.kabelmail.com
*.taf.kabelmail.com
*.videos.kabelmail.com
*.vodafone.kabelmail.com
*.webmail2.kabelmail.com
*.14.kinoijhoote3.shop
*.15.kinoijhoote3.shop
*.18.kinoijhoote3.shop
*.21.kinoijhoote3.shop
*.3.kinoijhoote3.shop
*.4.kinoijhoote3.shop
*.5.kinoijhoote3.shop
*.6.kinoijhoote3.shop
*.7.kinoijhoote3.shop
*.9.kinoijhoote3.shop
kinoijhoote3.shop
*.kinoijhoote3.shop
*.archive.kremsanderdonau.com
kremsanderdonau.com
*.kremsanderdonau.com
*.www.kremsanderdonau.com
mylifeonboard.net
*.mylifeonboard.net
n88t.shop
*.n88t.shop
n8k1qs.cyou
*.n8k1qs.cyou
pested.co
*.pested.co
phlick.co
*.phlick.co
phschool.co
*.phschool.co
piratecostume.com.au
*.piratecostume.com.au
plywoodia.com
*.plywoodia.com
ratemt.co
*.ratemt.co
revolutionaryconsultants.com
*.revolutionaryconsultants.com
smart-clean-vacuums-guide.top
*.smart-clean-vacuums-guide.top
smart-garage-upgrade-service.click
*.smart-garage-upgrade-service.click
*.prod.stairdium.com
*.sitemaps.stairdium.com
stairdium.com
*.stairdium.com
*.bugtrack.team-rheinlandpfalz.com
*.mail.team-rheinlandpfalz.com
*.smtp.team-rheinlandpfalz.com
team-rheinlandpfalz.com
*.team-rheinlandpfalz.com
*.test.team-rheinlandpfalz.com
theniheard.com
*.theniheard.com
Other domains in certificate