Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=candyburst.games.woolili.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:5E:A5:09:4C:EE:8C:75:84:22:15:3E:B7:0B:E2:89:59:74:B7:83:66:D4:83:F5:E9:A6:89:1F:42:48:3D:39
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
clebodycamera.com
abalan.ro
app.adiutor.co
storybook.adminjs.co
scan.aglive.com
admin.akshatbullion.com
dearcareplus-dev.almediaweb.jp
ampacityenergy.com
www.apaon.com.au
community.appjusto.com.br
go.athletic.net
b2bcargo.me
benphilipenko.ca
www.cellark.in
www.change-buddy.com
closence.com
invite.xword.co.il
shortflixindia.co.in
collineblanche.com.mx
unicorn-test.competitionmeet.com
cukierniamigon.pl
postulaciones.cydocs.cl
www.digital-tech-support.com
www.dstate.io
dutchrose.dutchrosemedia.com
mis.northlineschool.edu.kh
www.elarteacuchillo.es
www.ellumesolar.com
emuem.net
pass.emula.pro
eventosge.com
www.ffffidget.com
www.fleetlogisticspro.com
flyingcolorsartsstudio.com
tapdot.fpsyndicate.com
www.franklinbands.org
funzioneanimazione.it
test.galeriasudecka.online
gameilluminator.com
gemeinsam.gesund-belastbar.fit
app-staging.getelevar.com
getsetcar.com
www.givuma.com
app.goalskeeper.io
ballroom-admin.goodylabs.com
grupodxs.com
tc.hakoniwa.net
hipsterate.com
www.human-sustainability.com
order.islandpoke.com
www.jibespot.com
jpakjr.com
justintillman.me
www.katehemann.com
dev.kccling.com
acme.staging.business.lifebrand.life
www.lizbrown5280.com
console.lopay.com
www.lowkeyhospitality.nyc
www.manuelpurizaca.com
marylandisopen.com
levis4000.megataxi.com
fapiao.mendelowski.com
user-test-webadmin.mesensei.com
mexicleancleanmore.ca
qa.minterverse.xyz
mobile-coin.com
mootfinder.com
mykadun.my
neytrix.com
aml.nt-me.link
tibyana.nt-me.link
octoberseven.red
www.ospitalis.com
outscore.com.au
www.pehlivan.dev
pjs-collections.com
pozsgaibarnabas.hu
primepubservice.in
certificate.rajanibiohub.in
www.rakuishi.com
www.registr.me
royalflorals.in
rwn.pw
dt22.saifee-events.com
sancozta.com.br
simpletrips.com
friends.skiptoncamerata.com
clinvet-web.soluzione-digitale.com
streamlineinstall.com
app.tapkit.com
www.terrydev.com
www.theenterpriseu.com
thomasjsmith.ca
demo.transcommunica.net
familiestatuut-test.trustedaccountant.nl
www.open.unepstrata.org
videocontent.nl
candyburst.games.woolili.com
bil.xcode.no
Other domains in certificate