Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=johann-hartmann.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:24:7F:89:1B:23:EE:2A:3A:62:63:D7:4E:4C:B0:4A:C6:E0:1E:10:F1:C7:E3:40:24:A1:AF:4C:BD:FB:24:CE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.dreamoms.com
app.10ng.com
laz-spins-test.3dcloud.io
aayumedic.com
advently.co.uk
www.afksconstruction.co.uk
www.akbarthegreat.co.uk
mikko-chickboy.alapaapp.tech
www.allsinc.com.co
fusion.antler.co
astrodynamic.co.uk
businesstrendsblog.com
sriaditya-admin.classet.in
amos.elitesgroup.co.ke
codejerry.com
admin.coinapp.co
portal.pinnaclelife.com.gh
computersdream.com
contax.mx
www.dawert-immoservice.de
app.designcode.io
dmoverseass.com
www.dotslime.com
www.ds-giken.com
ihd.edlin.app
notas2.ueb.edu.bo
login.fierry.com
admin.footgolf.tech
employee.gajiku.asia
www.giangza.dev
www.gilgrid.com
gotootu.in
hardikvij.com
club.hayuco.coffee
dev.drops.hello10.com
icesportvarese.it
icvivah.com
portfolio.jasonthrush.com
jccsprts.com
johann-hartmann.com
caballitos.johonny.dev
exposure.ch.kiana.io
auth.sandbox.koliseo.com
test.konsult.health
netdata.kpots.com
www.kryzano.com
leaadbook.com
letsbuildutopia.com
www.lexiportfolio.me
www.liher.com.mx
littabook.si
staging.ltv.dev
mobileapptraining.com
www.mullog.net
ninjagtp.in
admin.ogiso.io
oneappsolution.com
24ff04aa-82b3-49fc-816c-dc769b8e7e08-mck.onymos.net
tools.osortoo.com
bufferloop.patheya.tech
zinpro-bluebox.peer-ai.com
przybynowparafia.pl
purnama.app
pwcrtc.com
misa-training.qasoftsolution.com
quickfixroadsideservices.com
qa-sso.ramp.com
rathana-student-info.site
pacific-tpi.rentokil-initial.com
www.rob-taylor.com
schwin.co.za
sdaywoodexhibition.com
settleup.io
sonoradefensa.mx
ciaafanfestcheeradmin.sqwadhq.com
ssbuffingworks.com
www.techiela.net
thaynetraining.com
theduohealth.com
chatbot-stagex.thelevel.ai
chatbot.thelevel.ai
demoecom-chatbot-stagex.thelevel.ai
demoecom-chatbot.thelevel.ai
thesaadkhan.com
thetherapycollective.net
viscontea.thetislive.com
watchout.thetonyw.com
thingdrive.com
thomasthelliez.com
tretiak.dev
expense.u-ran.com
www.dev.merchant.urbanlyfe.in
vazquezconsultores.com.mx
vgmoneyy.com
visual-raffle.com
clock.vivechurch.org
www.vudu.tech
www.wewantcode.com
wickedgardengnomes.com
yourbloomingbuds.com
Other domains in certificate