Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.prakashgundu.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 11, 2025
Valid Until
February 09, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
29:DF:C1:8A:B6:DC:FF:95:22:F3:15:16:71:F6:B3:4E:3A:4E:20:15:0C:E8:1E:58:BB:84:5C:2F:53:2D:70:3B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.petxamapp.com
erepublik.12traits.com
m.acg.aaa.com
ipad-booking.bbs.ac.th
memonavirus.againwewander.com
www.ajinkyabhandare.com
alhaq-initiative.org
appstudio.digital
www.aquaexpress.mx
www.askmadhav.com
avamatrixtech.com
cctest.azerp.vn
new.benjamingrauer.ch
www.bhitenco.in
www.bluewingspolymer.com
www.casapontanduvini.com
engieap.cydocs.cl
www.daivalogix.com
dancing-partners.com
fun.dmin.no
learn.dreamkit.cc
dusrapanna.com
easyconvert.shop
eggshop.online
darefoot.ehealthproject.nl
www.elecmar.com.au
qa-app.emailkart.com
erickxavier.com
faceplanes.com
feathershair.com
www.felipecuevasleiva.cl
fictionengine.com
fincalopez.site
forgetthejester.com
www.fynegames.com
staging-1469.geniegig.com
glamerapay.com
pay.sandbox.ding.gr4vy.app
pay.sandbox.partners.gr4vy.app
pay.sandbox.slyp.gr4vy.app
pay.sandbox.stripe.gr4vy.app
pay.sandbox.zip.gr4vy.app
pay.uelz.gr4vy.app
enroll.handid.com
clients.hectoware.com
hugobyte.com
hunbalsiddiqui.com
ilkerkaran.com
www.impexcompany.nl
descr.respilon.in.ua
iota-ls.com
pilltracker.kartaggen.com
am.kiadra.com
learnersdigital.in
legislationlemur.com
mahalohq.com
www.mammo.life
www.michaeljames.co.za
www.misgallos.mx
awfajri.my.id
myhand-poker.com
www.nettbygda.no
app.nextsimu.com
www.nibblcorp.com
northstarkpis.com
nuligems.com
app.opticcount.com
pinkvulture.com
piscotechnologies.com
platin-bm.com
www.prakashgundu.com
ptnbservices.com
erp.rablan.com
auth-realm-dev.rhome.com
my.risksteward.app
roysanreality.com
rpg2d.com
runsattitude.com
manager.s-learning.co.uk
safetypassport.es
sahanakannan.com
saveme.bg
www.sbtyacedemy.com
semillerodonernesto.com.ar
www.serianaic.com
smile-package.com
receipt.stickie.link
stimufund.com
stylaise.com
www.supportintel.com
api.talkitout.app
www.tetohutes.hu
theoarifont-gc.com
www.tidann.dev
toutim.fr
tsakaev.com
tucoachempresarial.info
gympro.vitanow.info
webinnovationnexus.com
dev.app2.wolfknock.net
Other domains in certificate