Open
Cached
·
just now
83/100
SECURITY SCORE
Certificate Information
Subject
CN=www.smudge.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 15, 2026
Valid Until
April 15, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:6C:ED:CD:60:29:B2:40:5B:3D:CA:78:D4:DB:5B:22:3D:8D:BC:99:E5:75:6B:AB:76:41:D6:D5:F0:07:44:12
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Good
default-src
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
buzziepay.com
79moj.com
kba-admin.acuizen.com
adosil.com
www.al-majd.org
alhmdan.com
dev-pheno.anuvabio.io
www.app-fabriken.se
www.asad-dowling.com
bastet-app.com
dynamic.bil.link
portal.boisegreenbelt.app
business.box.gr
cardnuwee.com
caspersoft.info
ceddcozum.xyz
www.chulocoinonsol.com
chymcakmilan.com
links.edgelearning.co.in
www.ootlaw.co.ke
www.tekrajojha.com.np
links.ramazansancar.com.tr
app.szn.com.tw
openpgpkey.2xist.com.tw
gscontrol.com.vn
qa.supbot.xbot.com.vn
compensate.com
couchclimbs.com
cubicle4.com
cumpita.com
deeplearning-english.com
dentistabraga.pt
www.dibsonpark.com
education.digitalliberia.com
dimitri-consulting.com
diogo-santos.com
discovernissage.com
www.dolsoe.dev
drewbregman.com
edesia.app
pre2-backoffice.eldiario.es
www.emanuellamdintima.com.br
eniddentistryandbraces.com
essencearia.ca
ettelaat.de
exworthdev.cc
fruitjemee.nl
gamentell.com
www.gccdynamics.in
gonzaloretamal.cl
shehryar.hanadigital.me
how-many-bees.com
www.iloasiivoukseen.com
inkportmedia.com
insync.inunity.in
ipmountain.pl
jasonreeder.com
jorgecamse.es
qr.juditverpleegt.nl
test-logistics-app.kitkeeper.co.uk
account.koala.health
www.korjausinfo.fi
www.leaguemates.pl
lomobox.art
manbo.live
www.mercadolibros.uy
link.atlas-apps.mit.edu
budget.mizz.cloud
myaccount.mobyltaxihunedoara.ro
www.monus.cl
www.multi.holdings
www.mypartymixer.com
naudghebre.com
rewards.stgregs.nsw.edu.au
app.omyfu.com
onyza.in
blgfcert.otso.top
poolside.life
priceofglory.game
admin.pro-solutions.net
psicologadaianejordao.com.br
blog.rjbasitali.com
cl.sallybeauty.lat
api.shavittzuriel.com
smartbabypad.shop
www.smudge.dev
www.sophietrocmez.fr
southhilltoprno.org
beanbuzz.suprun.ca
wheel.tedpayne.xyz
desativado.tomasgoncalves.me
cms.twuapp.com.au
www.umetna.com
short.valliki.jp
blog.vibetdd.dev
prod.viridios.ai
voyagesglobal.in
www.whatchado.de
xrpulse.net
yeslife.yes4youth.mobi
Other domains in certificate