Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.austin-high.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026
35 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:3B:45:22:7A:51:49:06:BD:A4:91:1F:5D:09:E2:AF:ED:B2:9D:AE:D8:F7:D6:F3:64:2A:CA:1B:7B:18:08:46
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.kgnnetsol.com
www.7sagency.com
www.aaw.autos
aldeacity.com
www.almirajschoolofamazingadventurers.com
link.amadornes.com
www.arakis.ltd
www.ariwodo.dev
www.aspirin.io
www.austin-high.com
autokit.ai
dev-verify.beforepay.co
real-estate-calc.billfan.ca
blockfixspace.xyz
bloxauce.com
www.wt.bytecolony.com
app.caremycar.com.br
www.cassidyweb.co.uk
chained-library.com
backoffice-stage.citypop.app
www.gilrabbi.co.il
colombomail.lk
www.alies.com.gt
corporacionlucidez.com
dnd5e.darkmane.me
startup.davidecampello.app
www.dedatabakkers.nl
payment.delooye.com
studio.dev.disruptive-technologies.com
pharmacy.dorygo.com
chengalpattu.eacabs.com
www.espaconatalia.com.br
editor.exterkamp.codes
hpe.globalsummit.f2bportfolio.com
fallinglight.games
test.foreningsplatformen.dk
www.geobuitrago.dev
gifguides.com
gustavbylund.se
www.tech.haco.tw
hardware.compare
hotellespalmiers.com
imbeton.mk
www.imgitb.com
www.inclinic.co.uk
app-ester.investmarkets.com
www.klikkie.fr
rooster-qa-automation.kognitivinc.com
manager.komenteo.com
brainmonitor.alpha.konta.tech
anna-ammar.lanui.online
yamagata.linx.live
jediadmin.magicbooks.io
math2latex.com
www.mattb.io
microlearnable.com
dev.monisentry.com
moskalti.app
muzbt.com
napolski.memorial
www.nflfantasyplayoffs.com
www.nilskrannig.com
www.onlineinsight360.fi
www.opengeometry.io
other-languages.com
pack323md.org
www.parts-are-us.eu
stradajeep.pessego.com
policybandhu.info
rsfn.qitech.app
www.rascals.co.jp
park-jihoon.re2fe.com
ourstory.reagancreative.com
remix.id
www.rivus-tech.de
carnesselectas.dep.rosepetal.ai
www.roxburghmurray.com
www.seanjohn.de
v2-hq.sfty.ai
skaide.com
skride.no
smartjharkhand.com
geoip.spafinder.com
www.sportslaw.in
shusweepsadmin.sqwadhq.com
www.tallogsymboler.no
www.tattooamos.com
www.techsolid.eu
portal.theappmenu.com
www.throne.camp
webdev.thumbify.de
fb.torvgarden-tannklinikk.no
front.staging.trajectplanner.nl
ausgaben.unger.dev
ooty.vishnutaxi.com
voltsync.pt
www.worktimecalculator.xyz
athansigns.xalting.com
zohaybshaikh.com
zupratti.tech
Other domains in certificate