Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.bitsybowl.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 30, 2025
Valid Until
March 30, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:22:1E:28:8E:D1:AB:8D:90:5C:00:0C:A3:88:A9:71:AB:42:10:DC:36:01:86:0F:5C:15:57:18:F7:3F:A4:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ben-mayer.com
10mado.co.jp
adamszalma.com
advaita-tech.com
sync.agamworks.com
agm-vote.com
www.aiduplay.com
www.ainovative.com
www.aldersbrookpta.org
jobs.aldridge.app
app.fr.aleteia.org
alexinsurancecrm.com
andreaskurz.info
openpgpkey.anze.dev
web.appaclub.in
staging.aptimithra.com
aravjain.work
www.aravjain.work
perry.archilabs.ai
usdt.atrisha.com
triadmobile.attendika.com
aussievpn.com.au
hrm.automattor.com
bestbillsplitter.com
bigfamily.com.br
www.bitsybowl.co.uk
blankr.fun
www.bloks.tech
bloominggreenfield.com
booksale.app
cabotagestudien.com
cacki-and-kemal.com
maps.cissai.com
civol.ai
checkout.couchbucks.com
cucufate.mx
www.dayatwork.info
www.devexpweb.com
discovering-astronomy.eu
www.drewszurko.com
boldlyforge.easysignage.app
emilie-pfister-psychologue.fr
new.f1wm.pl
fadinghours.com
flaxboll.io
fossdesk.tech
www.gregor-potthast.com
halolegion.in
hexee.app
www.homoglyphscanner.com
auth.hovi.id
www.ileti-turkiye.com
www.inventioncloudperu.com
j9autocar.com
jekiapp.dev
kellyfarmtech.com
www.kpsolutionsindia.com
www.kxp.consulting
www.lackierer.app
f.limscare.com
linkrwave.io
www.littledrops.net
www.malabartyping.com
email.mistro.io
mononymous.art
skmes.demo.movello.se
www.mudanzasonline.net
www.nam-nguyen.com
nandarocha.com.br
nataverse.org
multistore-don-taco.nextorder.co.uk
app.onestopbizfiling.com
onvo-tech.com
pecanmoon.info
console.pillowcast.app
pvcharitable.org
deeplink.ragecom.com
rcsldh.org
lightx.recursyve.dev
www.redratel.com
remixit.io
app.satcron.com
auth.serenefire.com
www.shikoinu.com
www.somosunogo.com
www.soundofschwarzkopf.com
www.speakermedic.com
help.spheraus.com
spikegames.co
swamisolar.com
otc.swaparoo.app
www.tahaomen.es
auth.trackingacademy.com
tripbuddyaiapp.com
true-visitor.com
txlitho.com
www.vlkn.io
weavertalk.com
websolar.cloud
www.whoshigh.app
Other domains in certificate