Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=drmunjal.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
52:72:AD:6D:FF:12:29:E1:01:FF:6F:19:6D:2D:32:0F:90:EF:99:3E:8B:23:5F:44:9A:B5:5A:F6:5D:93:56:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cl.moons.rocks
www.12hrs.org
www.44huh.com
surveys.ace-up.com
www.adamthesax.com
afpcustomtest.com
agata-dress.ru
agney.co.uk
ajanitech.com
alexanderjonovich.com
firepage.antler.co
maraton2.aplicacionesincontacto.com
arunachal.travel
api.b-reel.com
www.behave.com
candp.brickwise.app
cameronhildebrandt.dev
castablog.com
aramarkbelux.cateringportal.io
aramarkuk.cateringportal.io
wallet.charged.fi
admin.smartclip.co.il
www.hasson-hadbara.co.il
autos.cotizaseguro.com
www.daredevil.red
devteam.ninja
dianazitting-rioux.com
dic-consulting.at
www.dmitrilihhatsov.com
www.dominicanaava.com
drmunjal.com
dugger.dev
reservas.dzign-e.net
admin.demo.empower.eco
endlessorbit.com
faustinicostruzioni.it
fefanto.com
rembrandt.felixxgroep.nl
flavs.id
www.floryandfranklin.com
www.fogcitycapital.com
gamasoft.co.uk
www.gearreview.org
udem-dev.gestion-traiteur.app
my.getpartiful.com
colorado.getviral.me
girthle.com
baptis.gms.church
www.hellophysics.com
wishlist.heltonsoftware.com
hqeventcentregeorgetown.com
aiotlab.id.vn
imaginationpreschools.com
www.inbiot.in
cafe-noir-924.integrals.nl
app.intheoffice.io
trello-app.jotterbox.net
kevinhcross.dev
kothinker.ee
en.ksmusic.org
www.lappso.com
looch.dev
app.lunarc.org
www.m1technology.com
admin-dev.mabl.com
you.madeit.lv
malkaesther.com
recommendations-staging.mamamia.com.au
services.masterpiecestudio.com
next.maxentwickler.site
melty.tokyo
morgankenyon.com
muzaffertilkici.com
staging.mycosense.app
nathaliamoura.com.br
nuverax.org
itprojects.oakandfort.com
oceanave.trade
dts.ontariojudicial.ca
overviewhq.com
projectonepremium.com
app.prosperitytoken.com
my.pslove.com
qr.pslove.com
renansujii.com
embeds.revas.org
www.ruumble.app
latex.simpleclub.com
smarter-math.com
smoothware.be
steller.be
pie-auction.stjohnfenton.org
www.stormbase.co
www.superhero.studio
tomkamphuis.nl
admin2.condominios.trea.cr
links.udo.one
www.venishpatidar.com
www.vergelaw.fi
sticky-merchant.whitecloak.io
Other domains in certificate