Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.nagyjenoovoda.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 29, 2026
Valid Until
April 29, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B6:8A:5A:23:DF:A3:92:E3:3A:5B:1A:5B:C8:41:4C:08:60:F2:B7:6A:18:F1:A5:A8:1F:A7:A5:49:DD:C6:4C:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aurayachts.com
1spot.app
2-11-2048.com
a6labs.co.uk
commerce.ab4cus.net
www.adamkate.com
www.altonkc.org
www.amouretpoesie.com
grh.apcouleddjellal.dz
appblocking.com
www.aquilaacademy.co
ar-upopoy.jp
asbyggnadsvard.se
ashmibanerjee.com
audiflows.com
links.awsankara.com
dashboard.baseaccount.com
basegio.dev
batonacap.com
app.blingexpress.com
bo.brad.ag
instant.demo.busha.co
login.canvasland.io
capintellect.com
catchfries.com
cavuaerialservices.com
account.chumbaka.asia
sms.chumbaka.asia
gangatechnocast.co.in
www.monie.com.mt
cortfolio.com
portal.ctwd.com.au
theta.datatechsistemi.com
admin-ikadjago.dds-tech.net
signature.diwala.io
easypassnow.com
www.farmkb.net
iam.fastsigns.com
faustinicostruzioni.it
open.fonoface.com
auth-dev.gardenr.com
login.cientificos3punto0.sanluis.gob.ar
www.gods11forecast.in
www.hubotik.com
www.huskysoft.com.ar
20224863.id.vn
www.inputhealth.ca
insured.fyi
app.investoetf.com.br
demo.jawntpass.com
jeography.net
www.jfmartinsmanutencao.com.br
leadershipsummit.com.mx
www.literaturelounge.org
www.livingtorah.org
lmfi.co.uk
www.loyol.com.br
accounting.marketgames.io
markthomasstevenson.co.uk
medicalinfo.app
www.mmsoftware.at
moby.im
cl.moons.rocks
www.morelli.uk
www.nagyjenoovoda.com
ondoku.biz
app.onepay.cl
oneway-dropcabs.in
onigiri.pizza
pa-sase-ft.qa.appsvc.paloaltonetworks.com
pitacoin.app
services.pneuma.care
pronobisml.de
darts.ravish.tech
dayun-official.reflex-bikers.club
auth.balansero.stg.servalit.com
shadowhusky.cn
login.smartdigiseva.com
bob-loblaw-trust.blaze.solerabank.io
www.sphverse.com
pie-auction.stjohnfenton.org
portfolio.studio42dev.com
talkmesh.com
pwa.teseo.es
www.tfarquitectos.pt
tomkamphuis.nl
totely.in
admin2.condominios.trea.cr
www.vergelaw.fi
www.veriforever.com
vocalbrain.com
intra-staging.walkie-talkie.io
www.wlsp.waw.pl
test-admin.whitbeybailieproperties.com
moments.windoe.mx
app.wisplice.com
yakavenka.com
goerli.staging-portal.zksync.dev
api.zomfast.com
alpha.zonotho.com
Other domains in certificate