Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=stickwareapparel.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 29, 2026
Valid Until
April 29, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D7:CC:E1:49:E6:7F:CA:E3:58:A0:59:E7:E9:A5:58:CB:89:8D:89:19:B7:07:FC:EC:61:51:58:F5:C8:D0:4A:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
brand.66north.com
alimount.4hotel.tw
marketplace.acho.io
www.ahmadamin.dev
ahopi.com
aigrifters.art
auth-dev.alphagrid.ai
install.amplifiersecurity.io
www.aut0.ru
auth.bangjeff.com
birliktegucluyuz.org
sl.carfix.my
auth.casa-estelle.com
www.centralmarket.com.ar
londonbaby.circulopolar.net
careers.clapingo.com
claudius-eisele.de
www.gyme.co.il
youprefer.co.il
milao.leafnet.com.cy
www.aprisa.com.tw
communityconnectionsdc.org
www.cottagesvi.com
cvtherapy.org
portal.datagee.com
datajarvis.ai
sos.devlah.com
mitg.diid.art
auth.ejad-gate.com
www.enveo.com.br
dev-recommendations.ezcast.com
ffst.net
folsomtoydrive.com
fowcw.org
www.frelypay.com
demo.grimmelsvo.com
hallpassengers.com
www.happybirthdayrachel.com
www.humanitydraw.com
doxuanthanhtu20225234.id.vn
imobiliariaterceiropiso.com.br
anniversaries.innowarmth.com
istmgr.instabiz.jp
www.instalacionesgasalia.es
isit418yet.info
juliesaraceno.com
www.lacebridge.com
www.lcprobation.com
leandrossoares.com
l14.lhotatrophy.cz
crm.m-payaenergy.net
mblazonwebservices.com
www.meblomar.com
messageme.com
micasitaapp.com
www.moldovanandrei.com
mon-desir.nl
admin.monittor.com
www.myapplesigns.com
iiipoints.ncc.la
noraylab.com
www.ohthehugemanatee.net
cp5727289529597952.order.place
orthobill.co.za
ozonewallet.io
pioneersclub.io
projectflow.global
beta.redpill.paris
relvinhaconstroi.pt
www.roomview.io
scholarjet.com
atslite.scoutout.net
energy.smoliar.com
snapture.asia
speelpleinwerking.com
stickwareapparel.com
superfan.world
chronicle.tavern.at
qs.tech-college.jp
swnd.telos.my
www.thelostmetropolis.org
tiecourandaou.com
tinttec.com
totembear.com
towword.com
trinity-senior-care.com
app.trypp.in
tsvwood.com
www.utilssoft.com
vanpelt.dev
www.venleycapital.co.uk
www.versatile-flow.com
visheshinternational.com
ishaan.walx.in
cloud.wayout.app
xyzrobotics.in
finditfast.yozeinc.com
test.yummymeal.com
shopeehistory.zaldyjr.com
dashboard.zlto.co
Other domains in certificate