Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=davidpfluegl.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 11, 2025
Valid Until
January 09, 2026
40 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:65:78:05:EA:5D:9A:9C:F6:26:B0:88:30:B3:62:B9:46:3F:B9:2A:6D:AB:AF:09:F3:E0:F2:5B:B0:28:97:38
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bviralhub.com
verify.48marine.se
academiaser.com
www.actsofthechurch.org
aiweb.com.co
log-my-drive.alledotech.in
codify.amco.me
members.attentivex.com
lateafternoon.awakening.systems
www.babel.tools
bionurbiotechnology.com
ordena.burgerclub.wtf
www.circuitobh.com
socialboost.co.il
dummies.co.in
dev-book.colavosalon.com
envision.com.na
safe.comptametrics.com
dev.covibes.org
coxmentors.com
toshima.datateam.one
davidpfluegl.com
davidschwen.com
deeptechsolution.top
dfairbairn.co.uk
wolfgangssteakhouse.for.dinii.jp
links.drayalliance.com
gatekeeper.eagle-eye.com.au
app.edelia.sk
express-move.co.uk
www.fighter-power.com
flexfincare.com
auth-stg.flockfinder.co.uk
www.gbest.lv
www.gianlucamancini.me
dev-wdhniuy4-dgm20fmi.grafeny.com
auth-staging.hacuna.io
healthywings.me
receiving-uat.hotwax.io
baw-baw.impactapps.com.au
www.ishmeetsethi.com
jumpseat.store
anmeldung.juradelight.com
klfit.co.uk
api.lenarge.com.br
lineararquitetura.com.br
www.lochlanbroughton.com
blog.margaretleibovic.com
matarelax.pro
athlete.meetlete.com
www.mid.gg
recording.milkcrates.me
sensor.miotracker.net
www.mixavox.com
mkgamifi.com
connect.moto.de
mssdata.works
profile.mymagicchat.com
newnet.inc
devqrcode.nicbrain.com.br
sort.nisargshah.dev
site.nova-app.com
occasionpark.com
oscus.coop
oy-partners.com
pallettechnologies.co.uk
www.phyzitalstudio.com
prestigebuilders.ltd
ptb.studio
miyazaki.pubrepo.jp
www.rahulgputcha.com
autopro-dev.rapideshaw.net
link.receipthero.io
app.restlon.com
revo-shark.net
rjmgdev.com
opex-bo.stg.shippio.jp
www.sle.siapco.com.mx
translate.sign.mt
similarmind.org
gifting.sjc.co.za
pablodiaz.smartin-hclinicos.com
beta.tattooar.com
testort.de
www.thecarsite.com
alexandria.thomasstay.com
tmndevelopment.com
todzee.com
www.toma.ae
monika.topolko.com
totemi.mk
www.uberpaymentrequest.com
portal.fresh.villageco.io
sms.vltn.io
was.design
pages.wataten5-otanoshimikuji.com
app.witful.rodeo
wordover.xyz
zheta.in
spain.zik.ooo
Other domains in certificate