Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=junkdrawer.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DB:3A:30:99:78:3E:A1:81:C7:38:3B:27:29:73:F7:DA:00:01:2C:D2:FA:23:9F:D4:D4:A6:4C:D7:72:0F:21:0B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bhatandbhat.in
www.22d.cloud
web.2value.ro
www.2value.ro
adworkshop.com
aerodmedia.com
cms.airlockertraining.com
order.alsafi-heidelberg.de
andyyu.io
www.animocabrands.jp
www.appfrog.net
webapp.apporta.eu
ipade2.aquipido.com
www.arcticturn.in
arhtahealth.com
armandasgenys.com
arnestockmans.be
www.beyond-agentur.de
www.biannetta.com
www.blagodarenie.rs
bryanherbst.com
sociallogin.burgerkingencasa.es
jva.capropms.in
game.cardsofpandora.com
carranza.ninja
carteiracontabil.com
portal.cloverbyte.com
www.spacefarm.co.kr
tasks.code2d.net
operation.cogniteapp.com
www.courseconnects.com
cyberone.sg
www.davidladleydo.com
deeplink.staging.delcom.nl
digitalpoolleague.com
www.ecotopia.com.ar
crm2.edemdance.kz
emilypancake.com
www.emmanueldgz.com
essarcard.com
miau.fabianflu.ch
fahaamkhan.com
fourm.app
gaap.web-menu.fox-dev.ru
friday-cinema.ru
gamkasafaris.co.za
greenand.me
gsheetpress.com
guybriggs.com
www.harinicrackers.com
heyrent.it
portal.hrisonline.com.au
www.htetaung.pro
idpempower.co.za
app-vitalii.investmarkets.com
jackiekwok.com
jamesthornton.com
www.jespergundersen.dk
jfguerrero.com
www.hobbies.jijojames.com
junkdrawer.io
katdonegan.com
www.knowyourcaller.app
lemnisoftinc.com
school.lessontime.co.uk
letswok.gr
mercury.lightpaintlive.com
lottiegrogan.com
louie-l.com
magnus.ms
manayoo.com
www.maquicorp.com.br
www.mariehamnsflygplats.fi
mattheweric.com
mayolab.co.jp
metatensor.io
mrandmrs-cleaning.co.uk
muniuday.com
www.myinterview.info
faucet.nexus.xyz
pawfinderapp.com
pcubaborda.net
pipiska.club
sweetdec.piticommerce.com
planeteru.com
pohjoissavontulkkikeskus.fi
www.polybugs.com
qln.link
rangetrainer.golf
recicladoresdobrasil.com.br
www.sd-store.online
www.secularize.us
www.shapelogic.in
admin-portal.diga-meno-test-eu.cluster.sidekickhealth.com
ekyc.somuri.jp
fakewedding.swanmoments.net
sysemp.net
link.vanderbrugge.nl
vtuber.blog
beta.new-backoffice.waylar.net
Other domains in certificate