Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=frengen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 17, 2025
Valid Until
February 15, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
80:71:ED:0B:48:9F:92:3F:5E:4B:6A:5B:4B:A5:D3:6D:99:7A:6B:5B:9D:EC:77:C7:B3:50:05:4D:F4:2E:3A:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
agenticappdev.com
playables.2dkit.com
uz.32desk.com
postal.4patientcare.info
advalixcorp.com
www.timeline.agndevelopment.com
selectschool.algenie.dev
data.apptreeio.com
offshore.ardent-training.com
automoelig.de
aybkkmoscow.ru
shoppinglist.bitknights.com
bookavet.com.au
m.c24.com.au
www.caniteachmyselfkiteboarding.com
challengesportsacademyhosur.com
intactlockdemo.communitake.com
cyl2025.com
cyntheion.com
www.eadaad.com
eghra24.com
elevenapps.eu
panel.elitedineexperience.com
dns-notes.enkeldigital.com
profile.staging.envite.live
ercutveckling.se
test.fleet.evelstar.com
app.extractninja.org
fenacypa.com
frengen.com
gamemaster360.com
izumobi.geo.jp
geolightminingservices.com
globalpresentia.com
www.grzqzx.com
guhansensam.com
applink.gujaratfirst.com
healtheconsumer.com
hellohealthy.app
hideko-kudou.info
hyequest.com
ianaco.com
www.imnogood.fr
www.jeffsmind.com
www.jetshipping.co.uk
app.tms.jisb.uk
www.jkfwallet.net
www.joextodd.com
jseguin.ca
juliaandgriffin.com
www.juliaandgriffin.com
kawatower.com
kiidai.com
www.klicktape.com
auth.latestsightings.com
admin.learnatfirstclass.com
les-trente-terribles.com
app.lightassistant.com
test.liyanage.org
lueraycoladoabogados.com
www.lumiset.se
kohlipe.mapleworkspace.com
matheusbonotto.com.br
virtualexpo.matsumototd.com
fib.mehar.ca
livechat.messagebird.com
www.metastream.eu
mlsbuyer.com
nail-boutique-spa.mybestsalons.com
nagagaz.com
notefield.com
ontheoriginofcircles.org
www.openconjecture.com
www.ozqube.com
pdf-devtools.com
www.pennylife.ca
www.personalife.io
dev.pocket-pet.me
www.privalens.com
qcd.app
alpha-lp.reflectmind.com
rezidtv.com
patron.ribon.io
saltybuddy.com
santhoshramaiah.com
auth.selsa.ai
www.shawalmbalire.com
blog.shimazu.me
www.shoarmajeruzalem.nl
snbdev.com
snoozemaker.com
blog.stevehwg.com
superpog.com
sushadu.com
www.dev.szabobuilding.hu
teachsafely.com
teampump.io
games.thevobot.in
www.uberdriversapp.ca
valentinahrend.com
Other domains in certificate