Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.pmg-c.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 04, 2026
Valid Until
April 04, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A8:D5:61:ED:FC:6B:4F:DF:34:E3:A1:53:17:1B:B7:85:59:54:6B:A6:28:A0:5B:EB:7B:C0:4B:E0:87:EE:C8:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
austrack.com.au
2compare.net
3453d.com
affiatamento.be
tarotmuse.ai.kr
aimtowing.ca
account.almentor.dev
tm.askcodi.com
www.axalys.fr
bilal.codes
bitautor.de
platform-pcm.blmbastion.nl
bluebridgeinfra.com
www.brianhedgepeth.com
beta.codeskulptor.org
cohesive-health.com
plade.cole.la
conceitomarcial.pt
www.critical-influence.com
www.d10.dev
datavizbi.com.br
fos-s.dev-ltl-xpo.com
devchunk.com
www.devchunk.com
sme-research-connect.digitalforsme.com
colaborador.transkompa.facss.com.br
fitchecklab.in
fitozdorov.ua
www.flozaar.com
virus.gaeyou.com
www.gekkotech.se
app.getquill.dev
social.thazh.giize.com
gear.goldenfealla.dev
www.goodconsulting.fi
internal.gridedge.site
uploader.int.hummingbirdtech.com
idraulicoavigevano.it
iedabianchini.com.br
link.ikhlas.dev
www.industrial-eye.com
infeontech.com
www.infodraft-tech.com
visitor.inoutnow.com
uatsandboxauth.intrxn.com
www.izjava.si
link-fu-tai.jec-digital.com
justdiditby.ai
tappd.katzmann.dev
littlewishkit.com
hapala.lohnbot.at
loyalmate.app
eurotransportcollege.medewerkerstatus.eu
www.microfunda.com
minneai.com
www.minneai.com
bestellen.mix-essen.de
www.mlmdb.com
www.msauditors.org
jacobs.myblocs.io
vehicle-registry-prod.nor1.se
onlinepathologylabsoftware.com
www.openintervue.com
api.ori-muevo.de
menu.picks.com.br
pierre-bocquillon.com
capfil.pilfil.com
admin.pimpampoum.lu
www.planetsolver.com
sso.playgardenonline.com
pbms.pmg-c.org
www.pmg-c.org
dev.team.pwapilipinas.org
reidaviresidencial.com.br
revworks.dev
riderpath.com
auth.ringerapp.xyz
www.seanbhrim.com
smartlist.sebastienlubrano.com
sevenioexports.com
irregular-verbs.projets.smarzyk.com
mys.squeegeeverse.com
chai.teahouseai.com
clinics.teammstrd.com
www.the-tricktionary.com
plateai.thebeastapplications.com
themanitude.com
account.thursdayhq.com
www.tokyozhead.com
fetch.tokyrios.com
www.tshidydomesticnannyservices.co.za
www.uthere.eu
webgigs.in
www.wfrs.rest
wimaxestore.com
accounts.wrisgh.com
www.wylynko.com
staging-backoffice.yurtle.co.uk
staging.dashboard.yuzu.hr
zalwora.com
Other domains in certificate