Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=memories.barredo.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F7:61:80:6F:78:07:55:7D:DE:CE:B5:C7:C3:2A:17:5B:9D:9B:57:AD:97:39:9A:F4:AD:34:03:F8:BD:0C:12:39
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
1penny.io
www.100pilabs.com
a1soils.com
www.achievementkingdom.com
ambulancegps.com
www.andreadowyer.com
anewanglesalon.com
www.app-haus.com
www.architex-solutions.com
app.autosdlvrd.com
memories.barredo.dev
www.beatsradio.org
www.beerbets.com
betinadutoit.com
www.bigyna.com
bouba.at
www.bulljang.com
campfire-crew.com
adminus.cloudframework.app
www.cocinavegan.cl
codeindi.com
www.countriesbeen.com
courseconnects.com
cyborgfellaz.art
comercial-cyd-tec.cydocs.cl
www.djobnet.com
drbrightskinclinic.com
www.duettfiscalistas.com
www.lcguadalupe.edu.sv
www.eu-taf.com
wrg.gci-digital.com
adapter.gets.cloud
graphcollection.com
www.guitarlessonswolverhampton.com
www.harrisongoosen.com
stage.havefab.com
httpsms.com
hungtq225004.me
inboxelixir.com
future-farm.iota.org
www.jh-offen.de
joannaadam.com
www.joannaadam.com
careerkey.jobsforlife.org
documentacion.juniorgruas.com
cdn.kelvinorduna.com
lentesnovavisual.com
demo.mardox.university
mp2u.in
my.nativeslides.com
newgenml.com
www.nexhala.com
oktarkari.com
plaricn.com
downloads.playarker.com
www.pokeroddsemulator.com
polygl.com
pontusasp.com
crm.popshap.com
reseller.popshap.com
support.popshap.com
www.portoriverside.com
postnana.com
www.pownftmetadata.com
pranavpandey.com
theme.pranavpandey.com
translate.pranavpandey.com
premosocial.com
prismdisplay.com
programobscura.com
protocolzone.com
protorix.com
psilocinlabs.com
ptycoin.com
fleet.puremathsolutions.com
cupid.radr.in
app.scarrcharts.com
kfrac.seismos.com
shusson.info
sideprojects.app
skoontastic.com
speech.games
spotcatalog.net
stas.gifts
share.stillconnections.app
sms-shorten-ooredoo.swarmio.media
symbiot.in
techatro.com
tecnicalevy.com.ar
app.terratwin.com
chatbot-dev-3.thelevel.ai
admin-dev.theredheadedhostess.com
thg-vaccine-dev-web.thonburibamrungmuang.com
www.tickets-onchain.com
meteor.timkrause.dev
tinasboutique.info
stage.tripmaker.city
www.vpxrstudio.com
dev.my.w3lcome.com
join.wichteln.app
Other domains in certificate