Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=werdflex.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 23, 2025
Valid Until
February 21, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:16:19:93:0F:FB:18:F1:22:B8:EF:58:9C:BB:7D:4E:A7:8E:ED:A1:3B:17:A2:85:E2:7E:82:2B:2A:48:CE:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
abhiram.dev
abvs.do
energiakumppanit.alasti.fi
ameyacoorg.com
angryshivangi.in
club.aperides.io
artshelp.net
awarenessindev.de
bazarde.app
bennergames.com
www.bingesearch.com
docs.blockery.io
ts-admin01.demo.bluepark.app
ai.bonestudio.online
auth.busybee.nz
bwtsystem.pl
carda.qa
iaa.cariad.technology
carl-nelson.co.uk
www.christianfillies.de
comado.info
computational-fluid-dynamics.com
docs.conciergeteam.co
nibako-support-stg.daihatsu.co.jp
apps.devonmcgrath.ca
dhruvkumarjha.com
kwd-machida.for.dinii.jp
obskur.earthquake-audio.co.za
easiestbib.com
edouardtoulet.com
elelement.com
enveo.com.br
myjohnsongardens.equiem.mobi
app.farmprecise.org
7th.fcis2023.me
fomagran.com
games.gcbx.fr
www.grlamb.co.za
hippo.cool
dev.idmx.io
www.nerural.ilymgroup.com
www.infiniqosentinel.com
customers.kanban.inrvatemedia.com
www.irrpartnersllc.com
josephj.kim
karat-service.by
kbmwaterproofing.com
khasatila-yoga.fr
lamparinadesign.com.br
beta.luxodeon.com
www.maksellent.com
app.mfp.marketing
www.mihuexplore.com
www.mohamedwritescode.com
www.morimori.es
admin.myabaya.qa
dashboard.myfitnessbuddy.live
admin.nannyadvisor.it
www.natuix.com
dashboard-staging.netgiverapp.com
oneswissbank.org
financial.pawtocol.io
www.raspadinha.payface.com.br
designer.dev.pbxx.io
www.picturelink.net
www.plomeros24h.com
www.primemobility.de
app.taplingo.prouser.co
instore.pubq.se
p.pukket.co.uk
thp.raceme.io
rahulshah.co
share.rs2.de
satechlab.com
www.savingdom.com
pocket.shem.dev
www.crypto.shirtum.com
panel.sms-ky.org
spfweb.com.br
dev.stockl.io
hub.stromeros.co.uk
blogs.sumit.engineer
referral.sweep.ie
dashboard-v0.takyon.io
taskedin.org
mg.techaula.net
therockies.es
tillstetten.de
www.tombee.io
www.toowlz.com
ttmrenovatenonthaburi.com
www.twizzytalk.com
link.utlite.co
www.utter.fun
dev.dashboard.vidtao.com
vivekahumanist.org
watersportstracker.com
werdflex.com
woaarch.com
yourhealthintelligence.com
Other domains in certificate