Open
Cached
·
just now
83/100
SECURITY SCORE
Certificate Information
Subject
CN=staplerx.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 14, 2025
Valid Until
January 12, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D1:54:06:FF:06:04:F2:7C:0C:DA:17:85:D8:98:DE:95:68:0C:0E:91:94:84:A4:2B:2A:48:5D:12:B1:7B:73:74
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Basic
frame-ancestors; report-uri; script-src
X-Frame-Options
Excellent
deny
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cam-resp.com
rc.1v1.lol
associazione.5p2p.it
partner.abctalkies.in
demo.adminute.co
aimssec.app
www.ancpl.com
www.anouk-dierick.be
www.anventory.xyz
www.beanz.id
digitalketchup.beetek.com.au
birthdayparent.com
unileverhpc.bluearas.cloud
bonifacebeauty.co.uk
booleanstate.com
ludo.boomhunk.com
app.byfu.cl
api.chuzeat.com
www.weedit.co.in
staging-dev.codedesign.app
mycods.cods.site
www.order.kfc.com.hk
bailin.com.tw
self-hosted.costflow.io
www.cubesplash.com
staging-legal.d-cipher.io
dnotd.kr
elysonconsultingservices.com
emilheusser.ch
eq.com.pe
event-vault.com
evolvemobilityafrica.com
www.fabbler.ai
www.fatamorgana.co.za
felixniedermann.ch
www.fitk.tk
flowsandbox.io
app-dev.freshcatchapp.com
hawkzone.online
www.imedis.io
inovativacompany.ng
ip3.li
web-collective.ipumon.com
www.ipumon.com
www.jacytc.com
janakisuites.in
www.javandchar.com
www.jbmaryano.com
www.kaantaze.com
hub.karincasoft.com
ff.keystone.vision
www.ldhub.org
giveaway.lingocoin.io
calculator.lucianiernye.co.uk
luckily.page
luckythai.ca
www.markoni.app
midas-financials.com
naritancorp.jp
search-console.nsvpl.in
obakemask.net
about.onepair.co.jp
onionshack.com
amt.playground.xyz
plunge.studio
s.pmix.net
pomo2do.net
provider.prac360.com
donate.prideinlondon.org
www.reinakanishi.com
www.revmax-hospitality.com
www.runstreaks.com
sagaworkshop.net
sdixon.app
smyi.fr
staige.lu
staplerx.com
www.straxlunch.se
suottschelblau.ch
wussh-auth.sznm.dev
tamilarasanm.in
links.beta.tryperch.com
img.udeis.it
redirect.vasterapp.com
enterprise-sandbox.velauto.com.br
vemasmas.mx
vendetuvivienda.com
www.viewcryptos.com
vionapk.store
uw.virtualseat.live
webmuds.net
wedding-gns.com
www2.wha-digital.com
whisperinglegends.com
dev-app.wndy.se
www.xtremelands.com
xtyz.de
shopping.yolo.blue
snooker.yolo.blue
course-explorer.your-qlue.info
Other domains in certificate