Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=whereclass.me
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 23, 2025
Valid Until
March 23, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:3A:21:C6:5A:E6:51:BC:AF:C9:A6:1F:02:80:C2:3B:BD:D6:62:A0:0C:03:2F:0C:A0:66:DA:CC:57:50:F1:D1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cherdrol.com
adame-techs.com
ahmedadel.org
aikitchenassistant.com
alexdisdier.fr
alluviallabs.com
arena.aperides.io
apphalabs.com
arpitgandhi.dev
bepolishednails.us
devbon.bitdigi.de
blog.bjorn.co.za
shader-studies.bouze.art
bravura.com.au
brochimp.com
burneremailid.com
www.capitalprojectsportal.com
www.certyfikat-najemcy.pl
besties.clau.io
rekreate.co.in
demo.codergym.fit
pasangyangji.com.np
roshangautam7.com.np
www.communitymap.online
tracker-admin-staging.dbs.cl
dev.debtfreedom.app
dronesete.com
widgets.ducky.eco
eastrotary.org
x5dt32apsp5.easyapp.co
goodbye2021-dev-mdfqbgnp.enigmahouse.jp
epic.horse
evernestandfriends.de
www.expressquote.mx
login.app.fielder.one
www.giovanatessaro.com.br
www.girassolempreendimentos.com.br
www.hausarzt-giesing.de
www.heedkeep.com
app.islampedia.id
merchant.jeeblynow.com
www.labcode.io
ldr.fyi
liftbro.ca
guide.x.loplat.com
staging.admin.x.loplat.com
machineworks.io
dashboard.masterrestaurant.it
matiasgaleano.dev
www.measurement-lab.org
mechamoallan.com.br
menadeem.io
mihajlobondji.com
appsumo-shop.mobappcreator.com
omkostningsberegner.dev.monax.dk
www.motchasoft.com
zen.neatlancer.com
ics.netlogia.com
www.ninelights.in
crm.normann.at
ads.novacash.co
crm.nvasolar.app
oido.me
www.onevisualizer.com
beta.pdr.cloud
www.pointa.org
dev.link.pulp.mu
reblochor.dev
www.rptracker.com
go.rushtrail.app
app.sagelyai.com
scefoundation.ca
www.seananderson.co.uk
www.seastartechnologies.com
www.servicemanapp.com
www.simplevents.app
www.sipabacuskvh.com
embeds.slidesup.com
www.smplx.media
web-stg.sniped.app
de.everyday.sodexo.com
www.stratwayfind.com
www.teamsofthefuture.com
www.techscoop-academy.com
thebiglabofski.com
thepickatune.com
auth.tapp.theroboburger.com
go.thesoiltruth.com
thora.com.au
www.tompywell.me
tonlabs.io
topviewkohrong.com
valorem.ing
verbaai.org
app.service.warringtonpci.com
cdn.wedmatch.app
whereclass.me
www.workchatapp.com
www.yyt.me
zac.ac
Other domains in certificate