Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=coffeegamez.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 07, 2026
Valid Until
June 05, 2026
40 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:2B:3F:D7:BA:4F:DB:E9:91:BE:B0:79:39:E2:B4:36:EE:06:6D:68:4A:E2:40:F2:FB:E5:29:E9:1A:D9:DA:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bisconstruction.ca
upfort.airbook.io
blog.alfred.cz
andbefluent.com
anemonet.dev
app.animacionesinfantilesmusicales.com
anthara.ai
arcusaisolutions.com
www.arcusaisolutions.com
sukitsumi.asobicocoro.net
axelo.nl
bambahub.com
www.bambahub.com
berkayeracademy.com
www.bharatmanthan.net
www.brianforgeorgia.com
cardxsolution.com
carolinademarque.com.br
chadbot.fit
chanieme.com
chat-egy.com
chateaudemorthemer.fr
app.chipapp.mx
chugunov-logistics.ru
codezeninfotech.com
coffeegamez.com
coolworld.app
cor.by
www.creatorbridge.in
digitallabsldr.com
dirtflow.app
diyashikaorganic.com
duns.asia
eltapeo30.com
evanagreen.com
experimental-philosophy.com
farrsuite.com
financetaller.com
gastrogo.shop
geteidolon.ai
www.geteidolon.ai
getstudynext.com
hanumatintelligence.com
www.iapd.net
www.lebitume.fr
lociai.jp
www.longavista.org
ludator.com
mamoularabiancookies.com
www.mapagam.com
marianniesamara.com
spiceapp.materikab.com
prod.milestonemap.org
go.nextmilerecruiting.com
app.nexumpaygateway.com
notifyme.my
www.nova-emulator.app
nvlrecargas.store
palettebit.com
adslocal.panzerlabs.in
pasatest.es
pingmap.fr
jewels.pixelprose.fr
pizzabox.ltd
positorgroup.com
qar.ink
quickgrow.com
app.raeway.com.br
realconnectimoveis.com.br
rushyendra.com
www.sagnikbhattacharya.com
www.samuelkelechiu.ng
saqixpro.com
saudekangenbrasil.com.br
www.sirotanotes.com
skillsphereai.xyz
slopcorp.lol
smarts.hr
www.smarts.hr
socratesia.com.br
solaria.sbs
spaceflotsam.com
spinyard.co.zw
www.sportellimatteodev.it
www.spotlight-tokyo.com
tiruppur.sridroptaxi.com
srkengineering.sg
log.thergic.ar
toogether.app
true-compass.ai
ultrition.com
www.useniora24.pl
valtyk.com
www.vertov.xyz
wesham.sa
www.whoami.ca
www.wyattchamberlin.xyz
portal.xendoit.com
www.youthrive.in
zshopmm.shop
Other domains in certificate