Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pasttensedraw.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 12, 2026
Valid Until
May 13, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:EE:38:4E:C6:CB:CC:DD:8E:29:97:10:AC:51:5E:BD:98:EC:4C:FA:CB:77:D9:2E:12:C3:8E:F9:11:9D:18:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
complement.iamdeveloper.es
www.a-ej.com
admin.actiwoo.com
aliestra.cl
portal.allergymapdx.com
www.anandmaurya.in
blumelabs.in
dev.bombtrack.live
buinguyenducminh.space
admin.chorusclass.com
guide.tufee.codedbypatel.com
www.coffeeandcodingpod.com
1688global.com.bd
corecompetent.mx
curasmile.ph
www.danieldevapp.com
zonemobile.devolv.tech
marlafrancisca.drtis.com.br
eduxon.in
www.entitlemate.com.au
ericlo.dev
www.fengmo.rest
firealerted.com
www.firealerted.com
microsoft-ideacloud.forgedx.com
www.friendstechworld.com
arodoet.frontfacer.com
godspeedai.jp
admin.gwapagt.com
api-staging.helpboardapp.com
store.hifz.com
www.uat.howlingwolfe.com
inf-system.ru
insightdossier.com
iwin.inwine.com
joningib.com
jorgebarrera.biz
www.karl.codes
auth.lahtube.com
www.loanmesoft.com
ikoverk-lounge-mobile-staging.logicwind.co
app.treemerge.madebyenzo.com
cloud.makrshakr.com
site.meritu.co
micksbottle.com
micksbottleshop.com
micksbottleshopongrand.com
app.misterfanta.it
homol-backoffice.mulherespositivas.com.br
emr.ophelia.com
orionn.mx
www.painpointmedical.com
www.refund.parkyypass.com
pasttensedraw.com
web.preprod.paymytable.com
app.personate.ai
qwengineering.com
r1.miami
www.reacttouch.com
mes.revoluslabel.com.br
chatbot.rovedar.com
inventory.dev.safetyinminutes.ca
savvygenies.com
smpmupky.sch.id
sequoffshoresafety.com
redemptions.seriousmd.com
violet.preview.shortwave-staging.com
smncproperties.com
fbcf1.dev.squadle.com
stonicvpn.com
www.street-defence.info
sugampharma.com
dev-admin.talkster.app
www.teamdivis.com
teerthsaathi.in
an-techlab.temuidegenai.com
tezsure.com
the120bars.shop
thebookshelf.ai
thedemonwholaughs.com
vasireddy.thefamilytree.ca
thegeneroso.com
thejuansandoval.com
thenativecommons.com
dialer.uideal.dev
universitarioslla.com
insp.hosting.services.unpaidworks.com
mitratelv3.vertikaliti.com
vickeyapps.com
easy.videolink.app
vishesh.dev
www.vr.world
www.weddingtails.com
wisetro.com
www.wmammogram.com
wonderingwillis.com
www.xprcharge.com
xprcharge.com
yelowbox.com
zeewords.com
Other domains in certificate