Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=adacareklam.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D6:7D:87:8A:50:A9:76:43:4D:61:9A:53:AD:B7:24:FD:9A:68:3A:B2:FC:E6:30:8E:02:C3:45:EE:F0:5F:9B:0A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.12bay.vn
123abc.com
adacareklam.com
alabamaddc.com
www.alternatives4aging.com
arby.io
alpha-31337.ashesofcreation.com
avocadoxusa.com
api.bastienclement.ch
events.beyondnetworking.ca
track.bigblue.co
caballerosflyingclub.org
www.canvaslabs.ai
carlsonpe.com
www.cervusplusz.hu
www.cmaibeauty.com
www.cmcgdd.com
assafgranit.co.il
admin.opportune.co.in
coachedbygj.com
www.colinlarson.ca
auth.concertory.com
creatorsmap.com
wowza-orders.crispnow.com
daiauctions.com
dosety.com
app.drivecloud.com.au
drmagesh.com
app.touchncheck.dsinstruments.fr
communicate.elevationai.com
ellisongames.com
elmizan.com
www.enn.design
www.erikgreen.me
register.fishfacts.com
fysh.app
globalriskmodelling.com
logos.go-fet.ch
goldencross.app
dev.harc-app.com
ittria.homebox.co.uk
iamyan.com
app.ictrl.ch
bep.indext.com.br
inviter.world
user.juggle.jp
www.justinireland.com
invoice.intg.keap.page
quote.stge.keap.page
presta.kelasi.fr
studict-admin.demo.key-link.jp
offert.kneg.nu
stories.kotlintesting.com
lantsea.com
latouros.com
limastore.com.br
lingowise.app
www.lostinthetemple.pw
crm.mafdrive.ru
3d-homes-dev.marmac.name
cn.marsonyx.net
www.mediadesain.com
www.miapppro.com
michaelglueck.ca
demo.monax.dk
www.monotone.com
www.mors-immortalis.ca
fb.netdev.be
verbindungen.obrhubr.org
crm-dev.octaos.com
app-voluntario-modules.arco.org.br
kontakt.pdr.cloud
app.productbooks.eu
produvar.be
raida.life
link.rakukari.jp
rem.co
old.ridezum.com
target.scaninfo.us
seatingch.art
app.skipscooters.com
sougoleiro.com.br
savu-sfg.speakylink.com
www.stkmilevsko.cz
strnmd.com
stybbers.se
portal.syxpay.com.br
www.top-spark.com
db.toptym.cz
www.tybas-beauty.de
visionbeyond-staging.visionbeyond.app
vjdjapps.in
homeroi.wafka.com
staging.v1.weezer.fr
map.wwla.kiwi
www.xigentechnologies.com
www.xixstudio.us
coifeodonto.xptoconsig.com.br
xtrea.com
youthfaithgroup.org
Other domains in certificate