Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.kothinker.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 01, 2026
Valid Until
May 02, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:2D:D6:8A:BA:29:D5:C8:AD:0D:48:2D:D5:C7:E5:B7:3B:CF:27:98:C8:CB:04:CB:15:65:9A:49:A7:E6:F4:65
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
apmstom.pl
308.industries
4tsuboshi.com
www.agropires.com.br
alligatorfest.org
m.amajgroup.com
process-works.amicaldo.net
aniruddhapremsagara.com
aptitude-labs.com
l.ayushgoyal.dev
links.benbroadaway.org
www.bluelagoonpools.in
www.boothmanproperty.co.uk
boveda.ai
www.brisstudio.no
pro.caresend.co
chromatic.world
cocomptoir.com
www.radhakrishnahumepipe.com.np
www.pngl.com.pg
admin.nhaphangtaobao.com.vn
www.cortexdynamics.in
dasperfekte.com
bridge.drpjl.com
www.ecapyc.com
technologiaaa.uem.edu.in
elleaptech.com
www.eservicii.com
app.factordecambio.es
fantasygoldgh.com
app-staging.fedgrants.ai
financeplus.com.br
fredhamer.com
www.dashboard.global360research.com
glopronet.ca
gndrv.com
app.gobo.show
centralcoast.guesthouse.photography
contact.healthpointe.team
honeyh.me
hopus.ch
dashboard.idoc.idaho.gov
vote.ideafunding.org
invoicehub.co
app.psyfact.joflee.com
www.jp-ventures.de
www.kegelstreams.com
www.kothinker.com
learnwatchgo.com
logopedielievemutton.be
invite.loyalosystem.com
dl.lunchs.kr
magicword.cc
dev.admin.mamava.com
dev-auth.mapswipe.org
admin.marcefitness.com
www.mathpatterns.help
www.memurzam.com
web-admin.meraoffice.in
base.mergevr.com
p2p.micromal.net
demo.mobilenxt.app
mojo-dating.com
mothercareservice.com
paradise.motionwave.studio
matt.mumau.dev
kaiser-app.murallink.com
novamarbleandgranite.com.au
app.nudgegram.com
skanska.onpointigo.com
famille.opatry.net
legacy.opsession.app
www.patelkevin.com
www.pawneeosagecasa.org
pmrealty-group.com
www.refyazilim.com
apps.regentsaustin.org
www.roamtogether.app
www.saltsoftware.io
www.sangsundatalogics.com
seattletolls.com
rtm.sprpic.com
stockparliament.com
aida.stx.world
www.supremeventures.in
www.swiftcraft.tech
tailwindprefixer.com
tarsoit.org
bouganvilla.thediners.in
admin.thegrowthapp.org
www.theidealremodeling.com
artlarosa.thetislive.com
www.turnverein.app
hazarigold.ulka.games
villaeventincek.com
www.vinaydhomne.in
virtualnivia.com
voix.cc
www.whitelightlabs.in
vinos.withmigo.com
Other domains in certificate