Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.tourneysoft.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 02, 2026
Valid Until
July 01, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:F2:4C:39:86:99:6D:6D:BA:0F:9B:6D:27:29:19:6C:F4:EF:72:10:1C:39:05:5A:FF:6C:9E:B4:D4:F5:10:05
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cemodogan.com
www.135pixels.com
www.admockups.com
japan-labelers.aimmo.ai
registro.aplicacionesincontacto.com
us.production.xsdviewer.avisi-apps.com
www.blackstonemarketing.us
www.tlc5000.my.brinno.com
dashboard.caldoor.com
www.campfire-crew.be
saver.cedrict.com
portal.doctor.cheart.io
www.cheminventory.net
www.choukran.fr
www.creativebusinesssolutions.uk
dansilva.dev
destino-thuis.nl
devlinks.devicetrackerplus.com
www.dlkrentals.com
home.dominic.codes
www.atendimento.dropdesk.com.br
www.edwingtrejo.com
timetable-admin.staging.entur.org
link.etiqmediasites.com
mobile.admin.fit-morning.pl
fittotech.net
www.frontendnorth.com
qa-app.gethovr.com
uat-dashboard.gonjoy.asia
cancerdusein.groupama-nordest.tv
www.hemlockforsocrates.com
www.hinasupermarket.com
houseofthezodiac.com
iddris.dev
managers-dev.idu-identification.com
issho.io
dev.johnstonsconnected.com
www.joinhype.app
accounts.kabuku-dev.com
www.kashyappuranik.org
www.kesseventos.com.br
lamardemo.com
www.learnanopod.com
www.lernexperten.com
physician2.lifemd.com
www.linq.store
bestsignalfinder.m2catalyst.com
www.mfgprosoftware.com
assessment.mi-kketa.com
modality.co.nz
www.mohsinkhanshaik.com
monikakurek.pl
app.mylinxworld.com
www.nameshift.com
go.nesto.shop
widget.newzip.com
not-la.com
app-prod.novaltrade.com
nthvector.com
oceanentertainment.com
invite.olainvierte.com
dev.app.oldasdirt.com.au
www.olympusweb.io
perryspuzzles.com
www.pueria.com.pl
pokacabana.order.pulp.eu
analytics.qa2-raksul.me
qnqtree.com
www.queueme.in
quicktourney.xyz
www.quitando.app
www.rainfield.kr
rentals.rajnaini.com
evolvingman.revillager.com
revolution-sa.com
staging.rhizo.co
robertocontreras.me
rsipltd.com
test.runningchampions.com
onelink-dev.safehousetech.com
secure.scholarsmc.org
seaside-app.com
simonlague.dev
skirmishsociety.com
smallindigo.com
admin.smartrails.ch
ki.snapmentor.no
tappily.app
tdtscholarship.org
teamsff.org
www.tourneysoft.com
www.transimpact.io
unleash.com.br
alpha-test.ununifi.io
urban-classics.at
watering.wonside.com
xnovatrade.com
master.yaatly.com
www.yt5s-id.com
zeya.co
Other domains in certificate