Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=leatherwallets.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 06, 2025
Valid Until
February 04, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E5:C3:83:D6:84:2C:53:46:A2:24:A2:C0:DA:76:5C:26:98:E8:58:FC:0A:F8:E4:C9:6C:10:1C:5F:67:8A:83:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
comdroid.dev
aandhercrafts.com
www.manual.acromatico.co
addislifehealth.com
advancedchatagent.com
aldafas.com
iam.alexeyarder.com
americanapplianceshvac.com
appcraftlabs.com
ui.appfluencer.com
updater.avatier.com
awscostoptimizer.com
bbfantasyleague.com
app.bestellokaal.be
biddatech.com
bit.bit-minner.com
brandsbard.com
cloud-ya.kr
codypratt.com
collectiveio.com
spa.blog.danielkawalsky.com
www.deltaautocantonms.com
demingsdesign.com
cartage-mgmt-5.dev-ltl-xpo.com
devellotech.ca
digisynsolution.com
www.dinvetec.com
drsilonieskinlaser.com
dyaspora.ht
www.ecomplus.biz
elliehigh.com
www.enzobot.com
www.flagon.app
foodscapellc.com
friendzone.today
fundsnomics.com
goalpost.dev
iamrobot.gwjgames.com
hygienewatertanks.com
imblr.app
incident-aware.com
connect.instamenu.cc
www.johannavelastegui.com
jovefashion.com
paocaseiro.kangusmart.com
site.keyban.app
leatherwallets.org
www.lteeenterprise.com
www.mikeberry.dev
mintavote.com
wedding.miyan.dev
mohammadsahal.com
molequle.biz
dashboard.monalisakumla.com
manager.mprif.com
multidesa.id
pic-finnplay.mentor.neccton.com
marketplace.novoos.co
www.pagebuilder.dev
staging.pagosmultired.com
test-link.miruair.jpn.panasonic.com
parthbuche.com
www.paseodelasamericas.com
psclient11160.philanthrosphere.com
app.qualynegocios.com.br
recapme.app
refrielec.es
playtube.rentixy.com
cdn.resultadodelaloteria.com
www.roleplaylab.com
routine-lang.com
link.rum-x.com
runclax.com
tools.shephe.com
shivtexspinning.com
paulmitchell.showroom.app
www.smartcare911.co.za
symbios.com.ar
tanztan.com
www.tappedinevents.com
admin.taxibarby.ro
thebacktones.band
www.tiktoktomb.com
tiktoktombstone.com
www.tippytopmedia.com
www.trackdmusic.com
www.trackonfit.com
upwork-scanner.app
booking.vangviengtourlaos.com
varendermarket.com
vida-studio-stg.vdms-remote.com
ventustech.com.co
vessb.com
vivex.app
www.waybetternow.com
weslley.dev
whatevereatsapp.com
www.woojinliving.com
yavapalla.com
go.zwangsvrst.com
Other domains in certificate