Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.lifehunt.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 01, 2026
Valid Until
May 02, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:DC:EA:7C:81:8A:F4:CD:B6:F6:A8:5A:DC:EA:8C:B7:C2:72:4B:BA:8A:A1:42:3D:C8:2A:91:46:0A:C4:45:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.orderlock.com.au
staging.api.linkafrica.28east.co.za
luzdaserra.cms.2na8.com
www.365organicfood.com
425kidschess.com
www.abalogix.app
www.aguana.app
causacheck.algoritmo.lat
www.arumastudios.com
www.ballesta.com.ar
bdaya-dev.com
www.bindiweb.com.au
www.cedstech.com
www.centrodan.dk
app.sandbox.channel19.io
app.thegoal.co.kr
communitytrustcafe.ca
complaintor.com
my.dadohr.com
www.diodeev.com
dragomermud.si
links.durbar.live
ecofons.com
dev.esstampilla.com
m.expertanimation.org
peakboard.app.farsitetechnology.com
felix-moellerherm.de
www.forgetman.app
gaon.cl
www.ruota.gd.si
web.giftameal.app
glamiigenformulations.in
paspor-ditjen.imigrasi.go.id
gbm.gulfnetwork.us
www.herats.dev
houseofgames.app
ba.htoenjes.de
hualo.app
l.idstrong.com
itf-vaktweb-atest.itf-as.com
ihmjeeresult.itm.edu
preprod-ad-adminwebapp.knolskape.com
store.kobotogether.com
www.laynaboyd.com
webinar.legit.health
www.lifehunt.co
lihego.com
llmedicalclinic.com
alliance.test.m2x.app
madscribbles.in
mahcoin.org
manjuma.in
docs.maraikka.com
www.mattheweric.com
mavutech.com
metrogreencitydevelopers.com
app.mikrodash.com
mindbox.io
app.minimonitor.io
misspentyouth.com
kalendarz.mmauto.pl
chores.montecassino.academy
portal.moxymgt.com
musicana.app
mytamatnotif-proto.mws.fr
www.mybar.app
groovytask.nerdyhippie.com
newaddons.com
list.novila.xyz
desk-integration.ntslive.co.uk
www.onflix.app
dev-shortlinks.owo3.net
admin.pargolfsolutions.com
kruger.partnerhub.co.za
signout.pbcmaverick.com
persica.app
bestfriend.piticommerce.com
playibiza.net
premierexecutive.premierinc.com
web.haoqi75.qzz.io
dashboard.rashailautomation.com
backoffice-frontend-luca.rechtsportal24.de
reels.watch
bidding.rotaract3220.org
www.saletaneczne.eu
santaolallafoto.com
eqc.sel.vn
www.sently.io
shocode.com
simmer.recipes
simpleman.me
simplybib.com
www.sqlunlimited.com
my-dev.storydots.app
www.tampabaytamilacademy.org
www.tangaza.io
tarotfied.com
payroll.texcloud.app
tikendratravels.in
stocks.trei.dev
Other domains in certificate