Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=new.wishup.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 29, 2025
Valid Until
March 29, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1C:8D:03:DF:30:6C:BB:DF:76:71:80:6A:C5:2C:13:3E:12:AF:C1:D0:55:2B:38:6D:53:47:62:C5:DA:5B:03:03
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cardlist.dev
oodev.abacus.co
abdullahaldeen.dev
moap.aboitizpower.com
loan.acceede.com
app.aidcingenieros.com
www.alxgcrz.com
www.amz-club.com
andyigg.com
stg.annold.com
app-developer.pl
www.baltel.com
bankball.net
www.bebabeggie.com
dev.bioverify.app
www.bisshop.systems
netflix-clone.boostemaboite.dev
www.checkuper.com
www.closedcaptionai.com
kiosk98774.done.co.il
new.yourfarm.co.in
octopus.datafirst.co.th
grupocentro.com.bo
www.chmetalhouse.com.pk
www.wigor-witaminy.com.pl
apps.davidkratochvil.com
devpursuits.com
emmalahaye.art
www.entityauth.com
www.eventiere.com
app.familyproud.com
app.stage.flightpal.ro
a0jm.foodle.su
galaxymenu.xyz
lieferschein-aarberg.galvaswiss.ch
lancelot.gfcasinogames.com
www.ggandara.com
hc.dallin.guisti.org
cangrid.hbolte.com
hunterking.top
www.hurtswhere.com
www.icallbs.us
immigrationtax.net
abdi.is-a.dev
myominhan.is-a.dev
www.jamesnicolbooks.com
jdsareault.com
www.jidlonatrek.cz
www.keisanghr.com
virachathub.kkworld.in
luisbravo.dev
www.lydiamassiah.com
clubs.magic-form.fr
devapp.meny.dk
www.milapizza.com.ar
mindpack.com
auth.mindsway.co
facilities-test.mobilitymojo.com
dlweb.munily.com
mycarrysun.com
nanxli.com
naszeczytanki.pl
vdnh.orpheo.cloud
avatarmaker.pepp.in
go.petiukh.com
www.pianetawelfare.it
app.pluhg.com
qrartepets.com
app.quoteninja.com
auth.re-shine.jp
relaxound.space
admin-dev.rello.co
testurl.rxmxcorp.com
portal-develop.s3ntin3l.com
saascadetech.com
sainiphysios.com
sampleideal.com
shepherdathleticcamps.com
www.shinewellnessventura.com
skanelag.com
kryia.sonzey.site
spacesandcreatures.com
spitrizz.com
iteq.stackup.design
tambolabook.in
www.theacademyofpoliticalscience.com
project.tinkersprojects.com
translam.in
tribe77tech.biz
www.trophycase.app
qa-gtm.uas.aero
udel.ukantu.dev
portaldemo.vendorbadge.com
link.maison.ventii.jp
www.vipulrojasara.com
new.wishup.co
withplus.biz
www.worldsftso.xyz
writersolo.com
auth.zingroll.com
Other domains in certificate