Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.fleetingdeal.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DF:CC:8E:DB:41:A0:5B:31:F9:62:A5:21:0D:F1:4D:31:38:AA:E7:24:63:FC:F0:B6:05:48:CE:FE:9F:16:E3:ED
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
canergur.com
blog.1f8.co.jp
abercrombiemediation.com
www.acutefox.com
www.agripanda.it
ainalanazitrading.com
alphafunding.co.uk
login.appdrills.com
as-alpaki.pl
asogevents.com
www.bugzidna.com
buildfriends.com.br
www.burakustuner.com
catracamania.com.br
sw.clubmathieuperformance.com
auth.goluna.co.il
www.powerreach.co.in
www.codypratt.com
consulta-federativa.com
cutoff.rs
daleenda.com
www.ddiaflashcards.com
live.degencoinflip.com
s.denwa-kanyuken.com
dgdemmer.com
www.dinosarapp.com
qc.divvyupsocks.com
dpmcyber.com
paradisetails.easyapp.co
kb.eventhub.one
faridismayilov.com
filmengineers.com
firstagro.com
www.fleetingdeal.com
www.flexchairtraining.de
flipzat.com
query.futurity.technology
malu.gerson.cafe
www.goodyearbeyondtires.com
staging.grocerystorezim.com
groknear.com
gsalabrar.ma
linkstest.hellosaks.com
staging.helpdor.com
holatalks.com
hometierra.com
phamminhtuan2k6.id.vn
anheuser-busch.ilymgroup.com
impossibleselfie.com
api.itlekt.com
jedatu.com
jrcubeplastwood.com
jyomer.com
www.jyomer.com
www.reclutamiento.k-9apps.com
kilianhenkel.com
kolo-kolo.com
momododororo.kro.kr
followup.letsworktr.com
www.liboz.dev
lingvu.com
macacollins.com
sponsorship.magichands-massage.fr
cdn.staging.mailway.in
mamoonsharif.com
massimiliano.dev
megatechitsystem.com
mercadodelagua.com
middledottech.com
mmaxdentalcare.com
muni-cv.com
crm-2.mysecureoffice.com
natarajculturalunit.in
notasmarketing.com
saas.notsao.com
www.nsvpl.in
oszhrani.site
m.pizza666.com
qubitbybit.com
clients.nzf.raisse.org
www.rastrosdeguale.ar
rebeccaterry.dev
www.refiner.gg
qr.ringnbring.com
secureclicks.com.au
go.sendsafely.net
lp-discord.shinsekai-technologies.co.jp
shogotominaga.com
sohobyte.co.uk
srinivasachari.live
syncoapp.net
syndopa.com
www.syst3ms.com
tanmichaelryan.com
theisports.org
thexdstudio.com
www.ttnetwork.net
unitedmongols.com
www.valuence.me
zustinaexp.in
Other domains in certificate