Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=restaurateurs.bwemanje.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 15, 2026
63 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:5C:22:76:AC:AB:76:D5:05:C6:99:99:84:F6:CC:84:FD:4B:22:8D:16:B7:30:8E:C9:2A:AB:BE:34:79:D5:94
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
atlasdot.co.za
classroom.1know.net
app.abi-komitee.de
quadrantadmin.accelentinc.com
ai-everywhere.net
aibasetech.com
dr.albert.health
workspace.alledotech.in
share.almutawapharmacies.com
ambassadeursimperialistes.org
amorenyc.pizza
angels-list.org
applisolutions.com
appsbykeif.com
aqualarapiscinas.com.br
www.avvcastronuovoalessandra.it
www.beavercrush.com
redirect.beebs.app
bethanywhitfield.com
restaurateurs.bwemanje.fr
www.cadipakchatterjee.com
www.calculatucasa.com.ar
sso.canopy.ninja
canuna.uk
fuegobar.clau.io
arkvalleynews.column.us
smiletransport.com.tr
cxdezign.dev
dahmerconsorcios.com.br
morsecode-translator.denchdev.co.uk
www.drsrikanthurologist.com
www.dunamuslims.org
thoothukkudi.eacabs.com
familytools.app
fanso.me
festivalnation.com.au
frog32.com
www.gorbach.eu
gorilla-insights.com
halalgo.jp
www.haushaltsaufloesung-hagedorn.de
helmora.com
hyperbariclounge.com
aalcantara.is-a.dev
whatsapp-push.universal-assistance-ar.itx.ar
lgfadmin.kairocreations.com
live.kalo.casa
kettlebellsnatchtracker.com
www.kevinqi.org
upaep-dev.klarway.com
kopaonik.app
www.legalcompliance.mx
lend-rxtech.com
www.mhalimhd.linkpc.net
lions-candles.shop
lithionyx.com
ltfinconsulting.com
www.margaretcampbell.ie
movies.mcwoodtechnologies.com
midxgate.com
mishalk.sa
www.mrhidir.net
nalamayyam.com
peen.yachts
www.peteretlaure.com
sponsor.pharmaawards.co.uk
piertopier.org
chizcomm.portal.plenadata.com
www.portela.dev
pytex.net
qrexpressnow.com
receipt-project.com
rightnowroofingutah.com
www.ryinternational.in
app.simbioxis.com
statthordev.com
sugarfromorigin.com
bodamelendezsolorzano.swanmoments.net
tammotion.co.za
machine-learning.theusama.com
pseudo.theusama.com
www.thinkgeoai.com
pok.tilstack.me
www.tomsabel.com
www.trustedgeconsultancy.com
auth-stag.ttsopenai.com
tusarrescue.ca
www.tyronelayne.com
www.villegas-v-adt.com
www.vishwasp.dev
admin.visits-innovators.com
vitjun.is
beta.vsaastechnologies.com
www.webcat.app
homewiz.wmbre.com
www.ytbitly.com
tasks.zacharyjbaldwin.com
zhaunsbusinessacademy.co.za
zimopro.com
zjistitdluhy.cz
Other domains in certificate