Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=iitcodingacademy.site
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 18, 2025
Valid Until
February 16, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:77:01:36:44:2C:E2:49:22:62:48:9D:42:67:84:8D:F7:04:57:DB:BD:C8:98:7C:5F:E8:52:45:AD:19:7F:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin-staging.punjabstartup.com
app-staging.punjabstartup.com
www.910martel.com
cdn.aarnuk.com
admin.360.dev.audion.fm
aeseo.in
contingencia.agucare.cl
aiangels.art
aktis-consulting.com
alquiler-costaesmeralda.com.ar
api4ai.com
appscatolicas.com
casaplanta.asap2go.com
ashmall.com
asoleads.com
nft-checkout.babka.com
www.barrysmaleltd.com
www.beerfestbuzz.com
www.betatreecorp.com
www.bigtimegraphicss.com
bitcoincodex.org
bosleyneighbourhood.com
bunkajisso.com
www.buy-like.com
blog.callumdownie.com
www.cantru.com
celeb2fan.com
cjpodcastpro.com
cxo.co.in
sudesh.co.in
chute.codecycle.com.br
colectspot.com
me.columbia911.com
componentcollection.com
compuexpertosicod.com
coordinadores-libre.site
davait.com
dghandicap.com
digiscuolaitalia.it
www.sweetspot.docma.ca
domainecappa.corsica
auth.euroinnova.edu.es
meet.elli.eco
learn.evytest.dev
micrositetest.fanduelsportsnetwork.com
firevault.gacha.net
auth-dev.genopets.me
gusgus.org
attendy.halony.tech
app.hoodo.io
iitcodingacademy.site
inovoglobal.org
www.ivrphones.in
cloud.jotnot.com
juliansweatt.com
kaceniprofi.cz
kismetapp.co
kuraship.me
learningmatters.xyz
londonukrainiancentre.ca
lorenzodelfini.it
www.lorirubenstein.com
lotengook.net
dlinks.dailychex.meazureup.com
mechantloup.co
millionways.org
devapp.minkobmand.dk
mozica.jp
musicaltilings.com
www.my-camino.app
mynot.es
sis.odontofresh.com
organism.org
pluralcode.com
app.quantyf.com
querciaebambu.it
rekion.com
www.rivervalleyirregulars.com
saveforfree.com
www.solabredband.no
www.sparkhousedevo.com
www.stage.starkeytelehear.com
www.stryvin.com
www.sulzberger.solutions
blog.theheadfamily.com
thehistoryofweb.design
thepingads.com
thisweek.rocks
app.toyowado-archive.com
admin.trueself.io
trzanko.art
tuneapp.co
umanity.app
qr.vidoctor.vn
www.vstguru.com
www.wayneljh.me
westbranchdpc.com
world-surf.com
www.yeappz.com
zanmy.com
Other domains in certificate