Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gidisteel.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A4:95:BA:47:44:C4:96:D7:E9:30:EC:E8:81:E8:81:F8:87:64:47:4F:F8:AE:E8:9E:ED:1B:50:E4:D5:DA:C2:86
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
comptoirdelinde.com
localhost.1cubatech.fr
www.a2zbuddy.ca
altplus.in
links.amfcmetaflorist.com
virtual-fbauth.aplulu.me
app.arisecraft.com
asynchretro.com
augeoventures.io
test.bathyaldistrict.com
dashboard.bebabeggie.com
bharatbheesetti.com
www.bradleyhuang.tech
www.brenhr.com
staging.mobile.brewbill.com
mine.casinosenpai.com
client18.citadel.tools
duqueaa.clau.io
jaysomnathdashnamgoswamitrust.co.in
infokeas.com.tr
debsuddha.com
firebase.dirac.industries
android.disign.tv
preview.disign.tv
donkeysgonewild.com
d1-my.dpdlocal.co.uk
www.dreamtravelss.com
drjorgeleyvacarditoracico.com
earrn.app
admin.easoft.pro
edvinmark.com
enne310.com
enviro-log.tech
studio.epicureandigitalconsultants.com
demo.estumomentu.com
evar.io
exerciciosresolvidos.com.br
triple-kenya.fairchain.org
www.app.farmaciasgaleno.cl
financy.money
app.firmmeal.com
flossypork.com
giacopy.com
gidisteel.com
www.gidisteel.com
hoiku-map.tokyo
www.hotelsamudratara.com
gokingsgo.houie.com
contactly.htechdigital.com
seoinspector.htechdigital.com
www.igot.app
www.innovationalp.ch
www.johanbrinch.com
kabuto.games
kasuwabuyandsell.com
hc.kevinzou.xyz
inted.kro.kr
www.marigold.kunath.co.nz
learn-hanja-test.store
lifegram.app
random-ride.magiks.ru
mecordi.com
evaluation.tapps.mindtraffic.de
mmi.jp
musespace.in
www.nextops.net.au
nicolas.so
njegos.online
www.link.nomadapp.me
i10n.ogado.app
csv.onlinedoctor.co.jp
darpro.orbitalcustoms.com
othertypes.org
auth.oy.school
pewdoodles.com
qr.poap.xyz
www.progressierdev.xyz
quizzai.com
www.rafstormur.is
consultas.requiero.app
riseofpilgrims.cz
lp.roseninstitute.com
samply.app
medicos-hml.saude-brasil.com
simnett.app
www.smartports.co.uk
starrik.com
content.storydna.app
app.beta.svpernova.io
bodadiegoyyelissa.swanmoments.net
bodawedickfuentes.swanmoments.net
www.taktak.co.uk
arcadisvolwassenen.tqwi.nl
app.trueledger.in
tuapilatesstudio.com
admin.veridico.cl
whitfields.co.za
staging-app-link.wis-pay.com
zenreki.systems
arithmetic.zetamac.com
Other domains in certificate