Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=highsalaryhacks.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 03, 2026
Valid Until
May 04, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:D8:6B:C4:11:92:D5:C9:94:03:83:71:36:2E:68:D6:3C:98:60:73:91:CD:5C:A2:80:95:31:36:90:A2:75:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
centroanthropos.com
app.101elit.com
davcambala.ac.in
aemlinks.com
iot.agrisensor.es
alantaranti.me
app.allemanstoernooi.nl
edu1.ameegolabs.com
www.amitbhujbal.com
firebase.andytruong.dev
dev-client.app-faststaff.com
sknet.energia.app.br
auth.ask-myra.ai
azit-dev.net
beexplorer.org
www.bit3.ca
camera.mudcar.bitlliant.io
www.brewfather.app
brusadellicostruzioni.it
www.elimalka.co.il
www.333droptaxi.co.in
corpolatech.com
creativetherapy.app
www.dekorferro.com
webconsulta.drtis.com.br
www.drugunicorn.com
duix.uk
www.etawahhelpdesk.com
home.eurektickets.com
docs.fastor.ai
app.gameofsports.co
gateup.online
beta.getoutfit.app
veckopeng.giles.se
www.governr.ai
greener-buildconstruction.co.uk
www.healthqr.co
highsalaryhacks.com
demo.doc.ishealth.app
jcudin.fr
jeremiahroach.com
jmdsoftware.net
jokehazard.com
www.juliannabaker.com
juttame.at
kellyncunha.com.br
kitchencalculations.com
fluffhoneymoon.lajoscseppento.dev
leasebux.com
presentation.lexikeet.com
m.logivan.com
coimbatore.loyaldroptaxi.com
dharmapuri.loyaldroptaxi.com
perambalur.loyaldroptaxi.com
theni.loyaldroptaxi.com
thiruvallur.loyaldroptaxi.com
links.market-pulse.in
go.mcstaralliance.com
moderno.uy
mosahay.org
esoc.motionsystem.nl
nearshorelegal.com
traderdesk.ninjacart.in
hiralsbabyshower.nirshyam.com
www.nominandum.de
share.nusic.fm
okaygallerydesign.com
taofoundation.org.tw
app.paint-plus.nl
pivotflix.com
www.plagiarismfreecontent.com
khamano.pochittoo.com
leadgen.qtick.app
jepsonpetro.quetzalpay.io
www.rajatdua.com
revolab.us
portal.roomwith.jp
postwoman.runwayclub.dev
www.russellsgeneralcontracting.com
admin.salesbox.me
pairist.sapcloud.io
www.scrbrd.com
www.sephorabeautysalon.co.za
swarmop.com
tastaban.net
www.templeac.com
tempoehistoriajavae.com
thebrinq.com
portal-demo.touchtech.com
tropzz.com.br
tutorandlearn.com
adminblogs.unives.mx
hp.utsushiyo-note.art
v0.si
vafitness.ca
demo.vecticum.com
auth.veltrixphys.com
merchant.veripaygate.com
ops.veripaygate.com
zensolutionsllc.com
Other domains in certificate