Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=play.handtoy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
39 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:61:32:19:D0:2A:7B:F1:B7:29:1B:FF:F1:1A:CD:40:AF:4C:AB:04:96:ED:7A:09:9D:00:37:DD:D4:3C:17:BA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aihero.studio
ashley-test.3dcloud.io
dev-pcman.4patientcare.info
www.alice.party
www.anothe.jp
console.autoro.io
www.baara.net
auth.bksta.com
www.boxlineucl.cz
calendar-dev.branchmessenger.io
m.dev.charitableimpact.com
chirayuayushmanharyana.in
www.clubnetworth.com
www.cnt.one
ipos.co.in
intranet.colegioexphadis.com.pe
chanute.column.us
sinar.hargapedia.com.my
gferrer.criptan.es
dannyrosen.net
dieting-for-engineers.co.uk
dmtsoft.in
chillhop.dwane.io
hoctap.vatlysieunham.edu.vn
edutube.lk
test.clasificados.elheraldodechihuahua.com.mx
order.farmacare.id
farmart.com.au
feedsmanipur.org
gabrimatic.info
getvana.app
www.giraa.com.mx
app.givemycertificate.com
play.handtoy.com
www.harleybrito.dev
www.hyper.digital
app.hyperseed.com
www.idriskadri.com
dev-edu.irisai.app
www.jaksanapong.com
gamesense.jarrenmorris.com
www.jiffryshuhail.com
www.kagitoyna.com
kartrigy.ru
fabian.kotschenreuther.online
www.ledimoredigio.com
www.melodia.nu
www.melsbeautyspot.pt
merakiresto.uy
gpstracking.mikejam.es
www.miraconnect.me
mkbrauner.de
dashboard.performance.motivate.nl
profil.multidesa.id
resume.muniuday.com
www.mvp-ro.com
app.myend.com
links.playground.internal.onduo.com
my.onlineshop-rockstars.com
www.aleph.org.mx
painted.ch
expert.panamevoyance.com
craftprospect.papermill.io
www.personal-scorecard.com
verify.pets.id
www.pflanzenboerse.de
www.pieterseassociates.com
pinaashartjewellery.com
plytas.gr
checkbook.polycents.com
quidvid.com
remoansu.com
a.reorder.direct
www.retrovisor.media
greet.ringforpeace.org
sarahandbillywedding.com
sharenest.in
chatbots.shoffr.io
go.sidp.me
www.somosverdeyblanco.com
sparkmeme.com
sportzcoin.com
task.100.pn
teamontheline.com
terahelion.ca
appqa.therooftop.io
toniandguykaraikal.com
topmetricgroup.com
pecheur-docs.tpzdev.fr
artisanemenu.triggersplus.com
www.tuneprefs.com
tweerous.org
eventdemos.varian.com
varoadmap.com
venturepluspromotions.com
data.waccsa.co.za
app.xapnik.com
app.yur.fit
zilina.info
partner.zobaze.com
Other domains in certificate