Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=itssport.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:11:DA:B5:4E:B1:3C:A1:F3:85:F6:ED:CC:7C:F3:FD:79:AC:E5:5C:E2:96:B9:1D:28:29:BB:C5:2C:72:14:F0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
beckmannacoustics.com
app.100zrt.com
4dimco.ma
www.adamdicioccio.com
adaptmi.io
www.agavestrongclown.com
airesalud.cl
alexkitcoff.com
www.alexrothberg.com
ambalkar.com
app.ameicontabilidadeonline.com.br
ammarjaleel.com
anne-vidal-avocat.fr
www.antoniox.com
anwarrasheedentertainment.com
fluid-html.architectmindframe.com
www.automatizeminha.casa
baijs.be
bedcalculator.com
www.bellme.xyz
bepricewise.com
bestmanalive.ch
pharmaevoapp.bi4us.it
admin.recipe.bonabau.fr
bylundbil.no
schmudgin.bythebookthebible.com
c24.lv
charlyberthet.com
dl.fita.co.id
qa.docs.edubot.xbot.com.vn
link.convenii.com
media.cpgradar.com
khagiwara.datateam.one
shop.dazlstudio.com
backoffice.diamondgreencity.com
exames.digitalcardio.com.br
spinabac.engpa.com
admin.epias.dk
www.euro2006.net
hamad-albogami.dev
dice-roller.handc.app
www.hitalent.me
mc.ihax.org
isuzuleasingconnect.com
itssport.co
www.update.k-9apps.com
app.kamii.fr
www.keenslate.com
cloud.kuto.app
lamalabs.io
latiendasolidaria.co
www.letsforecast.com.au
letters.social
littlecoder.liem.tech
hp.lipalater.com
dev.ondernemers.lokalebon.nl
alpha.nodes.lunarworks.co.uk
www.maishamedicals.com
www.maisondebase.com
manufacturingpro.com
massage-christchurch.co.nz
empleo.metodocharlie.com
3etage.demo.movello.se
megasena.neuronhive.ai
colortol.npiapps.com
www.numxlator.com
www.obocon.com
designer.stg.pbxx.io
see.pete.run
pharmajumper.de
app.pionierkraft.de
www.pixelkinggaming.com
www.pokhilen.co
enterprise.profylecard.com
www.raidbuilder.app
auth.realfukuokaestate.jp
www.rugkrish.com
scrolladex.net
chore.sebdoe.com
selyna.gr
amplify.semecky.ch
smiteam.asia
sparkdoaz.com
gglsamco.sqwadhq.com
starco.network
stickerland.app
poems.suhaib.in
accident.tadatada.com
taxi-link.no
portal.thegymexplorer.com
tjmaanrakennus.fi
www.tjmaanrakennus.fi
test.tradingview.to
tribaludic.com
travel-manitoba.trueomni.com
app.trydownstream.com
test.vayudoc.com
webshop.wienerberger.hr
wifiwarden.app
www.dictionary.wumbox.com
Other domains in certificate