Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=www.thezoyaco.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 20, 2025
Valid Until
December 19, 2025
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:9C:C5:36:10:D3:ED:2F:8F:B5:CA:4B:77:3A:B3:F2:5C:D7:0B:47:B6:4B:E0:B3:F5:0F:86:6B:37:90:7B:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
binds.co
11520094.stratics.io
africa-foods.com
ambassadeurstourismedurable.org
www.anasanis.me
www.anxiety-aid.com
dco-validator.audi-on.com
aura-pixels.com
plunder.authworkinglive.com
www.bebesleep.com
www.bersatusmart.com
royalcharleroisportingclub.deeplinks.bfansports.com
blog.biokoder.com
form.biome-hub.com
forms.bloglancea.com
www.bolaoleopoldina.com
bradycarey.com
c8ktech.com
www.casasanripa.com
catwifmilk.org
chessevaluationtraining.com
sulkapallo.cintoia.com
www.cityrose.app
webapp.cleverti.me
climatecubes.art
admin.coachchat.me
sonictrading.com.tr
www.angel.com.uy
www.connectedmachines.com
crown-lang.org
flossmanual.csound.com
www.danielepiccone.com
daringenglish.com
dominicanidcamps.com
www.draleydimantilla.com
tracking.duyet.net
www.easyed.fr
www.eventify.cl
exk.jp
beta.fantasy-keepers.com
www.fitspecs.net
life.fndrsng.com
www.freshstreet.io
goodkidmc.com
th.gostudio.co
growity.me
trump-memory.hashito.biz
www.heylinko.com
ianpieragostini.com
inarimusic.com
ingmarschubert.com
iplanx.com
login.jibonpay.in
kwachu.com
avantgardeit.landrieaustudio.com
exadata.landrieaustudio.com
js.layers.digital
limbitless-solutions.org
www.mananagames.com
www.marchelocal.ch
marieboisson.com
www.martysvt.com
mecanizado.com.mx
www.minsta.app
www.mothercareservice.com
maven.msiejak.dev
backoffice-prod-sandbox.neos.app
neutronapp.com
m.newsreels.app
nhadaiphat.net
landing.okeydocs.es
internal-prd.order.place
truth.org.in
fundabitat.org.ve
pastmodern.co.uk
test.pennygemapp.com
projetecpgdm.com.br
registers.cloud
www.sellerleads.xyz
www.simemes.xyz
skydevsolutions.tech
www.snuspris.no
dev-app.sportscalesystem.com
www.stage23.ca
quote.steeltech.io
www.streme.me
www.syngens.ai
www.t-order.jp
tasa-ucdavis.com
www.thezoyaco.in
laufcampus.staging.trayn.com
kumbhaka.turnosweb.app
str.uck.app
vatterottfoundation.org
www.verbatic.io
www.visayasproperties.com
trainer.wanpass.me
to.wehelpteams.com
wojtczyk.pl
app.zerotocast.com
Other domains in certificate