Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.testspell.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 18, 2025
Valid Until
December 17, 2025
37 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
19:80:8D:C0:1B:30:25:03:2B:6E:08:FA:F4:6B:77:63:61:2A:18:83:A0:D9:54:09:11:C8:6F:F6:59:31:B6:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
camilacarnauba.com.br
a-i.cl
absolutedimension.in
aevdeo.com
ajmancarreovery.online
allsyndic.com
www.andeinerseite.video
www.mint.aperides.io
appitor.in
asmr.bid
www.atiftariq.net
test.ayeq.io
bakeaholicks.com
tracking.beefast.eu
www.blancandwhite.design
auth.blendnow.com
bsp.online
btcmv.org
imported.buja101.com
textyler.com.gt
www.coremind.jp
docs.cornellmarsrover.org
app.ctadel.io
darknucleus.org
dollarfintech.in
klant.dylancreatives.com
ecoservicios.pe
recruitment.uem.edu.in
ai.emergingtech.co
football.exmemory.app
www.exponential-isle.com
eyetothesky.art
www.eyetothesky.art
a0ft.foodle.su
friedrichstr-6-blomberg.de
www.getdalios.com
pay.e2e.gr4vy.app
pay.sandbox.blackbaud.gr4vy.app
delete-me.hark.eco
us.hungrybrain.in
boter.isun.se
register.ivalyu.live
testnet.layer1.janction.ai
jotspot.ai
login-app.leisureappweb.it
www.levelwork.io
noteshare.lmnet.cf
pinterest.logandevelopment.io
quickgrowthproducts.madhive.com
magestralia.com
www.manonet.org
www.metricas.net
auth.misalud.ai
performance.motivate.nl
ibnu-fadhil.my.id
producten.informacion.my.id
nkenspen.de
nudata.ai
www.odontogo.com.ar
app.openfair.co
santasuzana.org.br
originfilms.pro
www.osmiumcap.com
www.outxai.com
plugai.world
wcg-pv.ppmutilities.co.za
www.prasithaenterprises.in
v3.current.prizm.site
m.pyramid888.com
admin.rayhanapp.com
readyset-play.com
dev.recopo.info
vendor.rezga.app
schreinereim2.de
www.sidebysidephoto.app
truth.sipofcode.com
dashboard.snabb.lv
srdevops.in
stephenhealey.co.uk
stormyapp.ai
www.stratj.app
auth.client.terakoyafrontier.jp
www.testspell.com
themcp.buzz
thetherapyplace.com.au
tracel.ai
tudka.hu
umbrellasolution.in
eu.uveye.app
v-conbuilds.com
www.virtualinstrumentshub.com
link.vpay.africa
www.wayo.us
www.webbricks.io
worktrackingapp.com
nossagente.yesmktg.net
app.yixin-engineering.com
worldfolio.ylab.app
www.youplan.io
www.zitser.com
Other domains in certificate