Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=joelwfisher.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
62 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
79:A6:5C:6C:05:FE:8A:CB:3D:28:FE:E0:4E:28:0A:23:88:A9:E0:9B:F4:9D:31:6F:08:FB:BF:06:AE:F3:8A:A2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
blazeui.com
1872tradingco.com
get.abcworld.com
www.anthonylacheny.es
apicalapps.com
khaana.asap2go.com
asylumguilds.com
preview.balloop.art
benavelmusic.com
blackdorei.com.br
blushed-app.com
dev.booza.app
board.botsedge.com
melbalassi.capromenu.com
prod.carlosalonsofisioterapia.es
www.cenoki.com
chaturvediji.com
cms.ciprijanovic.hr
cardecor.co.in
www.theavatar.co.in
download.isetankl.com.my
www.trides.com.my
cours-cyril.fr
www.cyberapexsolutions.com
www.dahling.no
danielstanlee.com
danushindi.shop
www.danushindi.shop
uk.daoizm.online
mapp.davidecampello.app
onboarding.deepfakex.ai
p.ebios.work
beta.admindashboard.ecomoto.io
devautomate.elevationai.com
elgranbazar.app
app.emiesirois.com
staging-app.enwake.com
facilix.nl
www.technologies.fiyom.com
link.flash-coffee.xyz
foodplx.com
www.formfour.co
www.geomove.io
rp-dev.gestion-traiteur.app
console.goclugo.com
golftripleaderboard.co.za
greenlightmediaconsulting.com
www.greenlightmediaconsulting.com
www.comercial.grpconecta.com.br
www.guessmine.com
cdn.test.gyerunkanyukam.hu
answersapp.holschuh.co.uk
fringe.s.hotekan.com
hungryguygames.com
www.hvacdraft.com
inspectorvibe.com
js2csharp.inspirnathan.com
chevxeron-advisors-stage-5.ischoolconnect.com
jakethomasian.me
joelwfisher.com
karmitp.com
khanintlexp.com
www.knightmare.rip
lacadenita.com
letters-app.com
www.listentothis.app
auth.mathaniapp.com
mergebits.com
meteodust.cz
www.mierue.com
oh-hell.mintyfloss.com
monadone.com
www.nathanhazeu.com
stream.northnitch.com
termtrainer.nsg-hh.de
ogsofficial.com
www.okoi.org
onlineprintout.com
www.ori.studio
pianolessonssheffield.com
ops.picker.work
pittster.co.uk
bestellen.pizzeria-alan.de
dev.playaar.com
precisionsystech.com
quantumvantage.com
bookie.rainierinteractive.com
rajeshbiswas.dev
reformascriado.com
connect-ng-carrier-rewards.rxoconnectdemo.rxo.com
www.seekh.co
www.shijianliefeng.com
smartxevspace.in
softwavelab.com.br
tochezironservicesinc.com
tradelinx.com.mx
tshepisomotsumi.co.za
www.tubuenasalud.cl
rtrb.ungaahhhh.xyz
veriberg.com
Other domains in certificate