Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=meal-gen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 25, 2026
Valid Until
June 23, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B4:ED:BF:EB:E8:56:11:69:5E:47:F4:79:DC:78:96:82:F9:E4:30:EB:AA:E0:F6:C6:F2:40:72:40:FF:E7:C0:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aspexit.com
73healthnetworks.com
assessment.acisdatascience.com
spa.agtdijital.com
crm.aishopix.com
allpoolnetwork.com
farewell.amatsucozy.com
amerisbi.com.br
bestellen.amore-weeze.de
freeagent-live.apexialabs.ai
freeagent.apexialabs.ai
blog.avmsistemas.net
gearboxcentre.b-bot.cloud
app.batchx.in
pdfplayground.biforge.solutions
app-uat.blueprint.beauty
www.cabildum.es
ai-beta.chipaeditor.com
cilawellnessafrica.com
codesyncit.in
coinbridge.in
www.coopcompta.com
auth.critiqa.pro
cyaconsultoresyauditores.org
collections.dabioye.com
habitapp.dhairyamehta.in
drahtek.com
dreamcraft-mw.store
drycleanoasis.com
www.eageranalyst.com
www.ecosyncfoundation.org
www.edumerits.in
gtag.emptyobjects.com
www.bill.escrowbms.in
link.esim.com.mm
fabriquathon.live
fieldscholar.app
a0hy.foodle.su
minicrm.furnaceheating.ca
login.uat.getcredit.one
gsdanolotan.org
sessions26.hivewayevents.com
huozhen.autos
iot20k.com
itay-tsipper.com
showroom.jacquemus.com
jefftv.com.br
padelromand.jeremymalera.ch
avenir-electricite.joayou.fr
studio8.joayou.fr
keanuleaves.co.za
www.kevinkeatingphotography.com
labcoatorders.co.za
www.livingroupinvest.com
lodestar.guide
ltrands.com
tbbroker-live.lyhoursbiinsurance.com
beta.mayretire.com
mcbot.icu
meal-gen.com
www.mewacrunch.in
mrkinvisiblegrills.in
www.mrkinvisiblegrills.in
www.muovipilot.com
www.narainov.com
newsmr.co.jp
edge-v2.nside.io
kannadalyrics.oneapp.guru
opelchevroletbursa.com
soc.orisun.com.ng
oto-media.com
owensboro24hourservice.com
palladiumbau.com
client.parallelstudios.co
pay-dev7.qlub.io
bestellen.quick-bite.de
quovatech.com
www.rapidtests.io
www.rentsometotes.com
sgtest13.runmast.com
smart-city.seattlepartners.us
l.semparar.net
admin.homolog.sercard.io
www.shihaozhang.cn
develop.sigein.com.do
sortechintu.space
portal.teamortel.co.uk
tools.techbar.dev
bridge.theconnective.fr
tourettics.theperfectbark.com
www.tisnow.com
tndrl.co
www.tndrl.co
subsidysmart.totemx.ai
tramitnow.com
uzconnect.uz
vendrd.net
www.vibeflowers.com
www.webplatf.in
wowadoozle.com
Other domains in certificate