Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.mikerosellini.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 15, 2026
Valid Until
July 14, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B5:F8:4C:33:C0:F6:08:D2:8E:D6:75:F3:C9:71:D0:4C:2A:13:34:C7:23:BC:AD:6A:C3:77:CA:6C:E3:AC:E6:E1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
almursil.com
console.abechanta.net
afol.org
ai247hub.com
test.aiagencymarketing.co
platform.aim8.ai
fourelements.ainxstudio.com
dev-ilovejoara.ajoara.com
amedesky.com
tdc.bailao.dev
www.baraobar.com.br
app.betterwise.com
staging.blockframes.io
www.bnei-brak.com
brandonfonseca.com
builty.hu
www.bytekore.com
callingbear.app
portal.chadwick-family.net
kiosk.cleanbox.co.il
www.codebase.org
www.codelingua.com
beta.cognizance.vision
d2c.live
www.droptaxiservices.com
www.dunearc.com
e-kasilam.co.za
secondhand-trends.ebth.com
fargkonsult.se
farmaimperia.it
filip-pancic.com
kb.fridaplatform.online
fusionkong.com
aideployer.gaiadigital.org
www.geniedevs.com
www.gestmamma.it
gorod-sarov.ru
www.hamshahri.de
hasanguler.com
gigi.honsw.eu
dev.hurreytech.com
alphashybrid.impactwrap.com
inconvenzione.com
intoseychelles.com
www.jamescscott.io
jamesianoliver.com
image-game-prototype.joedalton.io
jonathanmaufroy-immobilier.fr
journey-note.com
tings.jstty.com
www.jungkat.com
www.kaikis.com
app.keytocheck.com
articles.libertytips4.com
listvaapp.com
lukesbreakfastblog.xyz
www.m-logi.work
open.marusho.io
mazeout.dk
www.michaellemke.info
www.mikerosellini.com
mutqinapp.com
mycupoverflows.life
mydividendmeter.com
www.naruvon.com
ngaostore.vn
nguyentienviethung.com
nooralmithaqllc.com
enter.nortic.dev
admin.omega.best
onestopmedia.se
fb.openpu.sh
dev.reseau-environnement.orphic.ca
www.pcalc.net
playbingo-online.net
poket.poker
www.prodsandbox.com
raghavshubham.in
recommendai.online
derify.riso.dev
social.robertolegorreta.com
rushangbhardwaj.com
salesresearchlabs.com
sapthas.com
app.sfaktura.sk
gold.preview.shortwave-staging.com
simberg.is
spa-company.com
www.stevefrancisfoundation.com
www.structura-capital.com
coimbatore.supercabs.in
pondicherry.supercabs.in
systemjab.com
technaulogy.com
www.telewebsite.info
tendrize.com
chaircafeotemenu.triggersplus.com
wdfapp.com
anniversary.yotive.dev
zipply.live
Other domains in certificate