Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ec.shanghaikitchen.com.tw
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 29, 2025
Valid Until
February 27, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:C3:8D:C7:70:54:07:42:DE:E5:EE:EF:92:C6:AA:D2:3D:EF:BC:6B:05:E0:25:38:46:3B:D6:13:A4:5F:D8:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
boletalo.com
a12labs.com
rkufezx.abyto.com
mandjboyumagency.aghedgedesk.com
akabuti.com
akhidue.io
alfaandomega.org
tiruppur.anbudroptaxi.com
www.andanilogistics.com
neptune.anekonnect.io
www.arocoiristechnology.com
as3dlabs.com
www.auto-mait.com
baby.fish
ticket.beamian.com
beatriceborghi.com
bespokespaces.me
bharatsharma.me
billymcallister.dev
www.chubbysseedsupply.com
feedback.avalue.co.th
x.codefade.com
ec.shanghaikitchen.com.tw
createflutterapp.com
www.createflutterapp.com
www.danysdrywallandpainting.com
deiserver.dev
www.delbasso.ch
www.edriven.com.br
monclub.eec-engie.nc
www.enjoycamper.es
app.excite.cx
www.falopes.com.br
fgads.in
dev.store.flowby.io
geoconvertapp.online
pedidos.granero.com
greenqms.com
www.harmoniaminds.com
havila-kystruten.ch
sitdepk.io.vn
www.juhuresidency.in
pau.jvillagranm.com.ar
kemieautoclassdetailing.com
lpm.leisasoft.com
liubonan.com
www.loinaz.com.br
gist.louiscad.com
www.lucrotec.com
www.mahavirashokjewellers.com
www.masterhairandnails.com
www.matteotrifiletti.it
lovemicro.meander.media
metamaster.nl
ecosystem.mindthebridge.com
staging.moshi-reco.com
app.numerise.com
my.olimp-auto.biz
www.paryya.com
pomkatsu.com
sistema.premoldadosconcreta.com.br
www.priclet.com
relics.eduardostuart.pro.br
richlawson.com.au
www.richlawson.com.au
rosscairns.me
starburger.safedelivery.online
www.shopdata.skilltree.seerium.com
shanfaholding.com
shribaidyanathdoors.com
ctm-admin.shridhara.dev
sirfrancistowne.com
skialabs.com
skonar.dev
ll3xbmkuxmdojqohzdj2.smartimob.io
www.spacedshopping.com
www.spendhelper.com
orders.stalaedla.de
stran.app
my.syndic4you.be
techietipswithme.com
technanza.com
tekito.in
tethertrades.com
theoctanegirl.in
secure-link.trellisconnect.com
auth.trxer.com
umigate.com
health.upwire.com
pos.useletts.com
admin.vantiglobal.asia
www.verysirry.com
vidopick.com
www.villa-antipodes.com
visa-finder.online
auth.watcharc.ai
webediaoffice-map.com
www.whcooper.com
acesso.yatto.com.br
www.ykumards.com
Other domains in certificate