Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=stanik.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 30, 2026
Valid Until
June 28, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:7A:3E:E8:69:B9:BA:50:8E:87:24:A0:98:42:03:C1:23:24:16:E0:EE:ED:26:16:10:A7:01:90:26:44:E1:BD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
buildbase.be
1on1chess.com
eventsapps.abegs.org
google.secure.accountlogin.us
www.adbinder.com
track.advancetrackerz.com
advocateinaligarh.com
huikoeaina.ainadesign.org
shopping-list.alienff.com
www.asrnaturalsllc.com
www.avec.si
business.azekkani.com
sports.backwoodmedia.com
builder.boxup.io
chdmarketingwayprogram.com
link.chippio.com
christopherdehaan.me
app.coachchat.ai
admin-beta.coachviva.com
dynamic.cockpitmobile.com
crowdctrl.dev
www.commitmentwizard.csforall.org
develont.com
drc.dharmatech.in
embed.diddo.es
dorkbotsofia.org
ecuestre.digital
demo.egis.finance
www.elizabethjanice.com
equfiloans.com
ericbess.fr
dev.flowledger.io
giantdodo.com
public.goodapp.in
gorillasports.com.br
www.gpttoolbox.com
gusee2024.it
www.handsout.in
www.hanko-maker.jp
www.homebid.com.my
homilinks.com
www.homilinks.com
api.hooolders.com
www.ilyamotamedi.com
www.infotog.com
www.iuy.me
www.iwouf.com
kazangil.com
test.kksurveyor.com
test2.kksurveyor.com
www.laeredi.com
www.lovebeats.co
mailto.wiki
make-decisions-easy.com
www.mannmadecreations.co.uk
www.marcodcarini.com
mdshoaibahmed.com
meatymart.com
www.medacus.com
www.medaxpert.de
link.mementocrm.com
bestellen.mevlana-her.de
www.mjcscientific.co.uk
www.mobiona.com
screengrid.nabilamerthabit.com
caniapp.nanitook.xyz
nevolim.cz
nicolasong.com
ninjaclaim.com
nynjah.com
www.obrimo.com
oldbuddies.app
nanistudy-dev.oneclass.com.tw
ouriginal.onlinepartner.se
www.ourdvds.com
padamdle.com
piperdaniel.com
piratesquadnft.com
www.protostartrading.com
quarantinedreams.app
www.quarklabs.io
hhs-calc.radanalyzer.com
feyti.rupertcloud.com
sagasys.tech
www.see-me.co.uk
www.seneca2d.com
shortlink.shedpro.co
sportyboiz.com
stanik.in
tchyafun.com
www.tecnofy.org
www.timeworx.io
newsletter.trick17.it
m.tucambista.pe
rapport.upandaway.no
fukumotodenki-construction.utiliai.ai
websitesbybrona.com
wedding-helena-fernando.com
weddininvite.com
www.worxsvc.com
Other domains in certificate