Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=guiltandworry.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 16, 2026
Valid Until
April 16, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:89:16:5F:00:0D:97:7C:04:83:A3:1B:88:12:C1:CA:6F:58:B5:59:FE:F3:C2:D6:EF:E8:A6:1D:85:5E:4A:95
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
blueoceanapplications.com
1666-8944.com
www.8110.tv
www.aleppoexpocenter.com
admin.cnl.algo-oasis.com
cnl.algo-oasis.com
www.ambuzone.com
admin.ape-ai.dev
testapp.staging.console.appabrik.jp
www.applogics.co.uk
dashboard.argos-solutions.io
asenko.be
auth.assetmason.com
bcctext.com
external-dashboard.cantaio.com
beta.app.cat4school.de
clean-my-asana.com
club7beachresort.com
www.namamiindia.co.in
coachjulie.tennis
mobile-auth.cooice.com.br
site-auth.cooice.com.br
portal.cristobalproductions.com
dadjokesare.cool
www.davidben.net
www.dev.dealcircle.ai
www.degtyarev.biz
admin.digioneexpo.com
manager.digitalview.fr
www.dkfw.me
www.dvmantenlimpio.com
econometricadvisors.co.uk
www.encitive.com
testpanel.esenca.app
ethquest.io
everydaymuslim.net
www.flowcircuits.com
flyworldaviation.com
digitaledge.framez.sg
freddi.link
api.taskmap.g2solutions.io
www.geomobs.com
getmyaiphoto.com
www.getmyaiphoto.com
www.gokwikmedia.com
gpi-code.com
gridiron-gemini.com
www.guiaaltabusca.com.br
guiltandworry.com
api-dev.historik.com
app.hobbiebuddy.com
www.hotstats.be
backoffice.test.houseid.services
staging.race.indo.run
ispythonalanguage.co.uk
cliente.israelfrota.com.br
test-gateway.ivoy.mx
nordhemsskolan.jawsapp.online
www.jdaqbank.com
jointoyage.com
www.jose-ep.com
juangreco.com
www.keficiente.com
kelvys.com.br
kumbaa.co.uk
lp.kurp.in
lmahattah9.com
duality.marplebot.com
martinez-saul-wedding.com
michaelandkyrstin.com
mihailpanayotov.com
mwk.io
nebula-sci.com
noter.pro
open-props.style
staging.our.date
software.pedzaworks.com
triggeredturtle.pense.co.uk
quotee-app.com
rollymonkey.rednblack.games
popmartth.rocket-bookings.app
shared.roosterball.media
auth.sharepark.net
shareyourloc.com
dev.silkframe-media.de
simplematter.io
www.soosteknoloji.com
spendinghq.com
studylog.jp
subtrack.cfd
supplementary.info
task-manager.net
auth.traveltruster.com
triplanai.com.br
www.vanlaer.net
app.vivideo.ai
wannapark.in
www.ylab.app
app.yuzu.hr
www.zoechoi.com
Other domains in certificate