Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=miastotogra.pl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 19, 2025
Valid Until
March 19, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
56:B3:84:38:38:0F:EB:A8:4D:A4:FD:B5:9C:8C:9C:32:6B:B0:B5:02:62:5D:70:85:A7:67:33:3A:75:35:22:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.brainbok.com
www.a2ktechnologies.com
aarondovturkel.com
plusmessage-portal.acrt.jp
app.adslide.io
agelco.co
al-wahab.shop
alanchang.co
alfasoft.be
development.ui.allevi.app
beta.amar-manager.com
www.amwatatech.com
fire.apisec.mx
apple.999914.xyz
www.ariankazemi.com
www.asylumjourney.org.uk
www.biharengineeringguide.in
app.kankmaz.biz.id
ai.cheekotalk.com
cityofrestoration.com
capi-ia.cochabamba.bo
codycolorgrid.codemooc.org
counsellingcompass.com
criticalbas.com
www.danielherzog.es
www.danielrodriguezm.com
www.delbee.mn
donothingfor120seconds.com
www.doomdrivendevelopment.com
drcareplus.in
web.driftnet.live
www.drishtinstitute.com
eastventurers.com
eleniarvanitis.com
ferriway.com
fertisave.com
www.fertisave.com
share.floom.io
flourish-lawn.com
merkanooka.gbhapps.io
api.gourmai.co.uk
static.hinlab.com
mc.homeproduktionen.de
hybuckets.janpino.com
links.preprod.portal.kaitsolutions.com
kankalu.com
www.kankalu.com
khyatieducationhub.academy
kidzdreams.lk
royalevents.kiev.ua
dev.app.klugklug.com
app.kritik.it
staging.layn.no
test.libertalia.app
alpha.fraction.lunarworks.co.uk
www.maco.fit
mexinlabs.ai
miastotogra.pl
wisys.millionways.net
www.movienonogram.com
mowlemboda.online
msa-dev.site
mukeshmaurya.in
nexus-app.mycubo.online
neocube.xyz
www.obsessivecollective.club
app.payr.org.in
stgsso.p2t.sg
www.phonemonitor.net
www.pipapp.io
taskmanager.plasmacloud.in
www.pocketpost.app
vertu.portfoliolink.co.za
posting-pal.com
nft.pretium.network
www.prmsoftwareconsultancy.com
profutura.pronutrilon.com
www.pulsomusic.cl
www.qupiu.com
integration.ribon.io
www.rohme.no
sbkeerthi.in
ser0.space
simonecaberti.com
link.sitc.de
smileytrails.de
signin.super-archive.com
sapp.game.dev.sycasualgames.com
ecare.synth365.com
szularz.pl
tabtechnologylabs.com
tadpoles.ltd
thailottoth.live
atendimento.theia.com.br
auth.sandbox.timelyschools.com
toucancafe.ae
www.vidhyapat.com
www.vikander.ee
vilastadion.ro
worldlottoth.live
Other domains in certificate