Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=idealisla.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 30, 2026
Valid Until
July 29, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:50:05:04:92:D7:82:F1:DE:E5:E0:1F:0F:2D:40:14:43:FA:18:9F:54:7D:A4:E7:7A:CD:27:AA:E6:FB:C2:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
benoitmeunier.com
037hd-movie.online
3tshop.no
www.80wash.com
online-islemler.agtdijital.com
aguazulservicos.com.br
qtd.dat.animoca.space
preview.antavi.ch
www.aresmm.com
staging-dashboard.beid.io
www.calendoo.net
chatojewels.com
www.chatojewels.com
www.climatizacaopro.com.br
chainlink.club602.com
www.conectcompany.com
www.cqspexam.com
www.craftomax.com
crmevidence.xyz
www.crmevidence.xyz
cubend.xyz
foundever.cuponclick.com.mx
mob.deepraft.com
dipkoservicesllc.com
www.dipkoservicesllc.com
www.dobbrick.de
drfischman.cl
dev-web.api.easysmartpay.net
efferent.us
elevenripples.com
entrocanvas.com
www.ethextract.com
felegehiwot.org
www.finestdoors.com
nickel.flitter.fr
fluentmindacademy.com
www.fpcexam.com
web.gerenciadorfinanceiro.app.br
preview.greco.fit
hhe.org.il
hoi.services
idealisla.com
portal.instamedpharma.com
www.karrangupta.com
khccn.com
wsn.khccn.com
kitfei.org
www.kojomirai.com
dev.kowid.com
app.leadfrompurpose.com
loltv.org
bhagavathi.macademy.in
mantiklayasamak.com
metricsmerchant.com
mindelia.com.br
mindsonglobal.in
www.mjtinsee.com
www.netzachtechsolution.com
www.neural-works.com
www.neurogenesispsych.com.au
neverlandskincare.co.uk
oldfloridarentals.com
papitosprime.com.br
old.peerdustry.com
pg1-2taskbuilder.com
plenapsi.com.br
qoqmeme.com
www.quarcadvisory.com
order.qvikandgo.com
radzikowskik.pl
www.rebanhosocial.com.br
www.rosato.vc
rsmatchmaking.com
sariely.com
www.senecaiga.com
setitsocial.com
stock.seyeong.kim
sin-city.world
snntech.com.br
auth.social-marketing.io
solotrack.space
www.stindustriesmdu.com
studiocstsas.it
staging.sumeet-joshi.online
lab.swatihospital.com
www.taxtoolkit.co.uk
thalula.io
www.thalula.io
www.thecollectorseye.com
www.thesardul.com
www.thestarcourier.com
daysix.thetraumaapp.com
trustnursery.com
staging.useworkshield.com
valcruservice.com
veierlandhelse.no
set.vocabustudy.org
engage.dupagetownship.voyagernetz.us
www.zandari.app
zrzart.cz
Other domains in certificate