Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=leaderboard.secwebdev.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 16, 2025
Valid Until
February 15, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:49:EF:98:E8:3C:DF:2D:DB:97:EA:37:6F:6E:DE:2D:CE:C0:6D:C3:AC:4A:7E:37:78:22:F1:6A:AC:E4:9D:9D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
blog.ideodora.info
lel.28east.co.za
staging.app.aibly.com
staging.anbi-reception.jp
www.andrewpiterov.pro
m.arifayduran.dev
splitfire.arslanonur.com
www.bizmatrixltd.co.uk
www.bluebathgallery.com
bqhflooring.com
www.bridge127.org
admin.c8mpass.com
store.caricord.link
admin.qa3.castiron.me
central.chirpyplus.co.nz
www.climate-comes.kr
demo.memberclicks.cme-tracker.app
www.partner.bazelink.co.ke
imdk.co.kr
komis.co.kr
link.boosteron.co.kr
www.kakaom-expo.co.kr
ado.herman.com.pl
www.geosupply.com.tw
dashboard.consultajent.com
www.coursademia.com
creativewebware.com
www.crral.com
cu-centric.com
www.daraneessomu.com
www.dis.repair
dragonnetworks.org
drewwhitedev.com
dtycoons.com
www.dustybritchesceramics.com
ai.egp.vn
www.engrafa.pl
enigmata.co.uk
enriquechacon.com
www.eosacro.com
evso.com.mx
findlove4you.com
flowlineai.co.uk
foreverdt.com
screens.gcadscreens.com
www.gfalm.com
test1.gharplus.com
go-truck.kr
pay.slyp.gr4vy.app
grapners.com
www.grapners.com
www.gzz.me
old.hashvich.am
link.hellopaddle.com
decode.user-auth-dev.huddlebrasil.com
otodoke7.ichilab.net
jiheatingandcooling.org
app.jobnavi-i.jp
idojaras.juhaszmark.hu
kauon.com
www.khasatila-yoga.fr
kunstpris.dk
stg.leafmusic.net
console.livestrapp.com
livetrademaster.com
redirection.lynk.network
madeandworn.co.uk
manga-spring.com
www.maozedongcat.com
www.mckintoye.com
medelco.com.pe
memoryverseapp.com
modistaofficial.com
sense.mohem.dev
test2.mozica.jp
www.myfiis.com.br
auth.able.next-audit.de
nomadcat.kr
www.ohhappyday.cz
www.painelarbo.com.br
app.pantry.nl
paramg.parasdham.org
pctom.org
pinteresteoygift2024.com
agente.poderegularizar.com.br
match.powersensor.com.au
app.printyourfriends.com
page.qnnote.com
qrysign.com
www.raspberryrd.com
www.retroc.fr
roonlabs.com
rustygnu.com
ryrconsultoresderrhh.com
tasks.sagarvd.me
leaderboard.secwebdev.it
neo-galleria.testyta.se
admin-dev.tumble.to
dashboard.weekday.works
ziplakazan.com
Other domains in certificate