Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=marketing.pizia.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 02, 2026
Valid Until
April 02, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:43:36:3A:DC:76:7B:0E:D9:58:D5:C5:3F:7F:17:B2:C4:D2:41:A5:95:6D:1A:DB:32:E2:FB:E0:46:56:A9:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cardstudy.net
reactionic.9lessons.info
promo.acmeproduzioni.it
afrochives.studio
www.altairpiniamusica.com
animu.tv
antoniotandtechniek.nl
projectgraveyard.aronschueler.de
lesteclair.botshare.io
app.brainey.ai
cockpit.brainey.ai
bonver-test-backoffice.cbdata.cz
chez-loulou.net
churni.io
cigari.info
internal.leave.clarityapp.in
watc.clementprevot.eu
go.clickacasa.com
quickq.codesh.in
app2.coffideas.com
ap.coffeego.com.ua
craft.doctor
simulator.dhankuber.pro
q1-mycollections.dpd.co.uk
d1-pickup.dpdlocal.co.uk
www.drift10.com
www.elderlawservices.com
www.ezfy.link
forbesprivatebank.net
foxpaint.io
geomaxgame.com
landing.gevents.it
www.ginavillarreal.com
www.glotov.org
www.greatfriendsclubuk.com
guitarbuddy.cz
www.gutearbeitplus.de
www.heds.io
help-norton.live
humavoid.com
alacarte.ilmenuperfetto.it
www.imobiliariazanetti.com.br
www.jerrysel.in
www.jonandjackie.love
joriswiselius.nl
live.levski.bg
loresearch.net
lucidsystems.io
dev.mable.co.uk
makemycakes.in
matchely.com.br
matchoupitchou.com
www.metmede.lt
www.midwestwindowcleaning.org
www.mindfulnessstandard.com
app.dev.moub.com.br
www.mqiubu.com
andiagussalimaj.my.id
app.mylock.es
www.neurofeedbackhypnosemarseille.fr
app.nextstop.network
link-dinamo.nibo.com.br
events.noneho.com
generalpurpose.pacenotes.io
admin.hyundai.pecas2b.com.br
corona.pinkbeton.com
marketing.pizia.com
play24.stream
app1.posible.in
www.rajukumar.net
ramenlabs.science
repinc.net
www.rxshep.com
saitou-yasuhiro.com
reunion.salem.edu
www.sawadika.es
sc5418.com
scully.io
www.seedforgood.com
seidemann-meppen.de
knowledge.sem-technology.info
smitetroll.com
staging.snowmonkies.com
cateringportal.stollsteimer.de
ing-v3.sudahdistaging.in
sundunes.eu
sygtec.com
temples360.in
www.thrift.house
www.tonramaker.com
app.tradeville.ro
learning.triangula.com
trimmeron.in
trochoid.hu
bookmark.undef.in
welo-wedding.com
goteam.writerduet.studio
learn.xhuma.io
src.yame.ninja
app.yehey.jp
Other domains in certificate