Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=firesupper.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 25, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E2:5E:F9:4F:E8:57:AE:13:0C:62:C7:09:FC:0B:29:1B:36:CD:7E:9E:BB:C0:33:95:5C:2C:21:13:4E:7C:EC:B4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
beeriosquares.com
102hotdogi.pl
jeromes-kongfigurator-cert.3dcloud.io
register.accountancyawards.ie
accupedo.com
www.aceman.biz
testing.v2.design.agritecture.com
aharms-resume.com
forms.ahjim.com
aiartxyz.com
personaltrainer.aleiros.com
alejandrotiria.com
scale.algostreak.com
andresenapiaries.ca
www.andrewlackie.com
ardalmishkat.com
ascly.com
aseltrans.com
www.askthegreats.app
atorionllc.com
bauworkpy.com
bestekredittkortet.com
bierwart.com
www.bigforkharborviewvacations.com
www.bingoplay.app
www.bmq.city
www.boardexamwallah.in
landing.bravemakersshop.com
dev-app.breederconnect.app
dev-backoffice.blueparking.co.th
shop.cofftea.app
curlytoonsbylee.in
dankira.app
sito.dellelena.top
www.developermemos.com
www.digihealthpe.com
portal.directpay.lk
demo.disruptive-technologies.com
www.divers-discount.com
phs.telemedicina.drtis.com.br
status.drtis.com.br
www.emreerkol.com
evoq.hu
ar.exhibition.excel-inn.com
firesupper.com
s.galaxypay.vn
stage.app.getshuffleboard.com
paiement.ghs.fr
h-cap.fr
social-login.hans-natur.de
heropay.app
huitzil.dev
staging.cmacc.in.th
itglobetech.com
coimbatore.jiotaxi.in
dharmapuri.jiotaxi.in
www.joshuareisbord.com
app.kickback.ca
ar.kultursphaere.sh
lebensessenz-gd.de
livuk.app
oree.ljservices77.fr
www.lockboxsoftware.com
www.locksmiths.sg
m.losdescarados.com
medianotes.app
www.mia-location.eu
moonwalkerventures.com
mouselabs.com.br
navegastrategies.com
www.nxxtr.com
prestemonos.app
www.pricedless.tech
testing.quasiflo.dev
www.rateyourdorms.com
rebelroast.lol
riosdemaullin.cl
salvoo.app
open.satellite.me
charlotte.scouthub.app
www.slared.cl
snmobile-test.app
app.soulben.com
entidade.soulcial.com.br
soundly.co
videoai.spiderx.ai
stastech.be
tasni.ai
gps.tcontur.pe
tekprosolution.com
online.thegracemessage.org
www.nico.thesimpleclub.de
tuhoroscopochinotuguiadeluz.com
vanago.app
viden.app
link.weareluna.app
www.windsocq.ch
soonerapp.wink.by
wisetoken.app
zerofirst.io
Other domains in certificate