DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=chat.kivet.rocks
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026 88 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:E5:9D:3D:33:19:95:29:29:49:94:61:C3:35:CC:4C:B2:71:61:3F:E4:CE:47:AB:94:C8:4E:DD:9D:F2:18:53
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
roomplanner.cswoandsons.com

Other domains in certificate

3core.dev
aaronfloresid.com
payments.adelielogistics.com
chat.agorawiki.com
alleycat.dev
astonishing-reader.com
autolive.autorayatimur.com
test.backridepalawan.com
bompsyche.kr
buycasino.net
smartcalculator.caesarali.com
cloudmason.dev
klippa.compli.nl
link.concafe.live
analytics.cryptohelvetia.com
app.dsnag.in
www.ebulgakov.com
executiveprocleaninggta.com
flatbread99.de
www.forrocommunity.com
g2corp.g2canal.com.br
www.gabrielsanabria.com
gga.dev
web.gigover.com
hawkengg.com
immersal.app
jost.dev
www.kevinheuple.com
chat.kivet.rocks
voice-recorder.kjugk.com
rewards.laviehealth.com
camp.lazyeee.com
www.lukebui.com
marcodennise.com
merchant.marketmyindia.com
chef.mealime.com
employee.medicalbrain.com
fashion.melbournecupzedrun.com
www.mikedrakos.com
www.molgress.com
staging-admin.motobase.jp
www.muscleauditor.com
oad-mesvarietesble.myeasyfarm.com
www.myplanningpoker.com
nairamillion.ng
nargiza.love
www.nikafoundation.com
previous1.nilear.com
teachdrive.nivenn.app
ooparts.so
www.pastoresramirez.com
www.familyfirst.pereraandsons.com
phong.dev
www.popoffice.be
talks.procergs.com.br
www.progresspicture.com
promoguadeloupe.com
proofolio.com
bibai.pubrepo.jp
purrlocator.com
qatchsms.com
www.qr-serv.fr
admin.v5.rebus.com.co
recipeshared.com
reservaibirapitanga.com
star.ritterlarsen.dk
robertbrigden.com
robindaub.dev
www.salesbyar.com
auths.saltydogtrends.com
sam-apps.com
university.sasaki.com
heroes.probono.savvysuit.com
shadowweather.com
light.utc.shannon.fail
shemonasingh.com
qa.platform.simskills.io
sltprocessing.com
smythian.com
staging.locker.sticksports.io
straightenthemout.com
som.sunshinestarts.com
sydneyeclipse.com
scm.tech-fusion.ca
app.thefacultyapp.com
tishreiinthemoment.com
tomasbruckner.dev
auth-dev.tomboloapp.com
beta.ultrahealth.care
shorts.vidfactory-ai.com
alk-staging.wamiri.com
wheelofnames.live
organization.platform.whydots.com
www.wkalender.app
www.wolfroels.be
warm.wyzetalk.com
yalzapp.com
zacharyinserra.com
docs.zingchart.com