Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.globalinsure.tech
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 08, 2026
Valid Until
April 08, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:FF:B6:5B:01:EE:EB:8B:AF:F5:A9:88:52:7C:D9:CC:9B:9E:AA:90:5F:07:6F:CA:96:66:88:68:CE:C8:31:98
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cgtech.rest
www.cgtech.rest
human.520nm.net
parkert.advokat-t.no
aiacademyos.com
alatronik.com
chatbot.amomic.in
amplifyroi.agency
labclub.app.br
www.appgeni.us
aswin.cx
at8mix.net
www.battlechoc.com
prototype.bettercart.ca
www.billsheldon.ca
www.biomechanix.ai
www.blueprintbuild.co.uk
www.blueprintfood.co.uk
cangen.icu
caoying.autos
www.caoying.autos
cegapp.autos
www.cegapp.autos
www.civic.social
plakon.com.tr
controlzoenetv.online
iam.costao.com.br
crashtest.com.br
dora.cyassistant.io
decoder.run
dezai.mx
doctorfelton.com
einkaufsliste.dsje.de
apply-dev.emfire.io
prod.crm.fleetagency.endora.dev
evrorestobg.com
explaintheordinary.com
www.explaintheordinary.com
space.finn.com
spaces.finn.com
www.g-y.jp
getstillpoint.com
learn.gilsdav.be
www.globalinsure.tech
glowgoalsstudio.in
admin.horizona.com
hotelmoukawama.com
humanticlab.com
iaqca.fr
imsandu.com
www.jarsty.com
jdercompany.com
www.juliamarcus.de
www.kaloriez.com
kewk.site
www.kleopatravargas.com
learnmimi.com
sawlani-turnips.mauricode.co.uk
merit-badge.university
miniswift.run
mizutechwaters.com
www.monpetitgarage.fr
k12.org.mx
www.k12.org.mx
payjam.app
pinpoint.click
bestellen.pizzeria-pipaso.de
sys.pochittoo.com
www.prayerly.app
puzzlepractice.online
animeindia.qzz.io
console.ridebase.org
rkfishing.com.br
rursys.com
saktheeswaran.in
skyproductionss.com
www.softimpact.eu
sswebsites.pt
www.stadiahunters.com
anmeldung.stnikolaus-wohlen.ch
studio-mpl.fr
api.suggestly.ai
sumgematria.com
bodamartinezrojas.swanmoments.lat
bodaorozcozelaya.swanmoments.lat
www.tamilkadavulmurugan.com
i9tecnologia.tec.br
techopanel.com
tfcgymapp.com
budgetwebapp.theargis.com
insightsai.thiwanka.xyz
traveltirupati.com
varangroup.in
www.varangroup.in
www.virtualwebca.com
app.engage.qljoxncgyhmyxutjoyiq.voyagernetz.us
w3genesis.com
www.whatgenius.com
whitehalluk.com
zielonepodworka.pl
Other domains in certificate