Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=trailfinderproject.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 27, 2025
Valid Until
March 27, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:F5:5A:F6:AE:10:8A:3C:F0:DB:19:DF:B3:6F:22:0A:30:76:78:6D:73:C7:51:AB:4B:E7:E7:89:66:D1:9B:BB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
script-src 'report-sample' 'nonce-WK1bj-UZIA_v0a9-DSs3lg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self',require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
22d.link
2neighborsgames.com
on.ambarmemories.com
math.aquibm.com
copihuedeoro.ar13.cl
www.autovist.com.br
www.ayos.me
beecoelevators.com
www.bhavbejo.com
www.bigtuneclub.com
catalogo.bindimport.com
www.boratltd.com
www.brooksidequant.com
www.cherishtables.com
chillchezcharlee.com
chiribogabros.com
www.citylet.com.au
cloudlesstech.cl
www.mydegree.co.il
colimatch.com
inventory.dewsteam.com
dietitiansuparna.com
widgets.dixper.gg
math.stage.doodlelearning-us.com
schoolrukmani.edu.in
www.eol-sets.com
docs.finitechat.com
www.firmfoundation.academy
flopods.com
www.fourteenseventeen.com
frenchlinguisticsinstitute.ca
fyno.com
getuff.com
www.greensmarketingsolutions.com
www.hbs.pl
team.hey-smiley.com
www.holsain.com
www.hpps-uk.com
felag.hsf.fo
iamjosiah.cl
www.itnry.com
jazzjibberish.com
www.jobzogo.com
julianpropst.com
questworlds.karmitsa.fi
app.koicontrol.com
kuraflix.com
lagloriaesdelsenor.com
learnaihub.ai
www.loomyna.com
imanager.lshub.net
lukesw.net
auth-dev.magoo.app
mamiesuncuento.com.co
www.mamiesuncuento.com.co
dev.mlaw.ai
www.mphcassociation.ca
otf.munix.ai
dynamic-links-prod.my-neighbours.com
n-lib.com
eustis.opendata.report
test.orbiedtech.app
pancakehat.dev
www.philipmathen.de
www.planera.org
gwappadmin.procurementmonitor.org
www.radiotiempodedios.cl
raunak.me
auth.relative-ci.com
rstadvisors.in
www.saborefe.com.br
saibeauty.com
sa.scottbensonmba.com
international.semac.app
sepiapotato.nl
serranoburger.com.br
shervy.ca
sitiocasadepedra.com.br
siyamcapital.com
slim-verzekerd.be
sterlinglutheranalaska.org
syzygy.lol
app.alpha.tara.ai
tekohana.com
thirasaraproducts.com
trailfinderproject.com
traversoft.com
www.travisdockery.com
marketing.trgfiduciary.com
www.trulinote.com
tshilidzi.dev
superapi.tuoferta.cl
www.useboomerang.dev
verse-bid.com
backoffice.vodium.com
app.warningtemperature.health
www.yamaunlock.com
yamaunlock.com
zaramobils.com
www.zowal.de
Other domains in certificate