Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=wowpropertysummit.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 05, 2025
Valid Until
February 03, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DA:B7:AB:B2:AB:CC:8C:39:1E:A4:2E:09:DE:EB:B4:83:D1:F2:C9:E5:DD:DD:75:4C:40:FF:85:2E:F2:33:B7:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
asima.co.uk
2x2.social
azek-bom-recipes-test.3dcloud.io
www.a1balajipackersmovers.com
adityajoshi.online
akp48.akpmakes.tech
www.amielectro.com
anchoritsolutions.net
anticode.me
armadaops.com
atmfintech.com
triplewhale.austerewear.com
www.barnesip.eu
pain.biobarica.com
www.bizgrab.io
blastronaut.co
dl.botitapp.com
lataja25.bracelit.es
brandonenwezoh.com
capncrunchadventure.com
omnichannel.cenhud.com
www.chathamroom.com
app.checkseats.com
cible.app
babylulu.clau.io
learnwithone.co.in
paramanu.co.in
www.commfire.com.br
dakiktech.com
datzpress.kr
drnadiv.com
staging.easie.in
eft-item-tracker.site
www.erickylinnboda.com
teachers.escolaconquer.com.br
facundoferreira.com
www.find01.com
fityogurt.app
foodforhim.com
foodosia.de
gamequanque.store
www.globalize.io
www.gwilson.info
vortex.hamletco.space
hand-tools-market.com
happinestindia.com
heimkoma.is
api.hsbomfimcontabilidade.com.br
hugoborsier.fr
www.industrialpmr.com
www.inputhealth.net
jethro.link
jimba.cloud
jngp.100.pn
apply-develop.judicialappointments.digital
www.jutil.org
www.keeponroaming.tech
www.lilno.co.nz
longo.africa
lunarelectric.in
ismor.mor.company
moveon.support
movingbay.com
player.mrandmrsgame.com
naturalsolutions.one
www.orbanforest.ca
oscargo.es
editor.pixis.ai
www.beta.planosoi.online
catalog.plastecity.com
plum8.games
dev.qitech.app
quickresponse.app
link.ra9plus.jp
www.raeuber.io
rebrr.nl
www.sagarwatamkar.com
merlin-assessment.samfoot.co.uk
www.skypopcorn.com
mathieu.smarzyk.com
smpgservices.co.uk
app.surfpayapp.com
www.sustainnovatechlabs.com
digi.sviamiprimonraj.in
switchitgame.com
cards.thirdrailcreative.com
partner1emenu.triggersplus.com
horuscross.turnosweb.app
twogirlsonesofa.cz
www.twolast.com
bsa-dev.tzelei.com
vi.vacancy-filler.co.uk
watermaniapuzzle.shop
wayoflono.xyz
partner.withpara.com
wowpropertysummit.com
www.wowpropertysummit.com
xtea.app
zigmasoftware.in
ziweischolar.life
Other domains in certificate