Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=connectpharma-228.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:AB:77:F2:F3:27:90:C2:CA:94:20:B9:9E:17:D7:28:3B:77:80:80:40:A5:4F:DB:2C:1B:65:E3:A2:19:23:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
connectpharma-228.com
www.affirmsinc.com
get.atrable.com
www.aviram-eldar.website
www.bayoulacombemuseum.com
www.bhumanch.com
bluespear.gr
bystrzycadolna42.pl
campfi.app
www.chamara.me
colorante.ru
web.aggregator.pnpl.com.np
www.dcts.dev
www.debated.fr
www.diastecnologia.com.br
www.didseagullquit.com
rewards.digitaldesignsdentallab.com
dileksozu.com
dolarja.com.br
www.ear-trainer.ch
link.eategy.com
emersontorres.com
endurorollchart.com
enor.finance
www.escaneatupiel.es
lab.evystage.dev
www.falcorsquest.com
pos.ficalapps.com
www.finsne.ws
gimme1.kr
goldspiresolutions.com
master.gro.care
insutrack.grsp.ch
www.grupomaxtho.com
www.haldrob.pl
www.hardtconsulting.co.za
pysakointi.helsinki-vantaa.fi
abest-osu.b.hotekan.com
hydratemate.app
pemkekula.hyperglade.com
www.idid-plus.com
console.intelliflowio.com
applink.io.vn
app.ioda.io
baby.isk.engineering
itsrudecat.com
www.jaegsaindustries.com
link-wan-tsui.jec-digital.com
jriegler.com
www.jsonverify.com
karnabyone.com
krishnakripadental.com
laerttefelix.com.br
latiendathriftway.com
pay.linkify.cl
mdwojacka.com
dev.melihkuru.dev
www.mvpenthouse.com
aehak.my.id
www.zevka.my.id
tech.nandehu.com
preview.song.io.nandenjin.com
navarim.sk
test.sentinel.newmont.com
jv.o7digital.com
oligas.com.br
oligomaster.com
www.opulentrealestate.net
paniati.com
preview.ui.penumbra.zone
app.dev.poskee.com
www.projectsbyalex.com
radio-paper.com
app.railtasker.com
ranjitsreenivas.com
share.reapapp.io
compassionateinquiry.revillager.com
www.robertandallison.in
app.staging.roboflow.ai
rolandniokhor.com
saraarta.com
www.schoonheidsinstituut-scarabee.nl
cadenas.sembrandoalianzas.org
shahprasham.com
www.shitinabox.fun
pink.preview.shortwave-staging.com
www.smallstartups.dev
portail.solutiontokam.ca
spprd.com
referralcode.starlee.in
tejimandireferandearn.com
www.threadok.com
www.toetan.com
vippro.day
wavesoftravelling.com
wellify.ai
worldclassgamer.com
accounts.sandbox-subscription.ximera.com
subtranslate.zsoft.asia
www.zyan.co.nz
Other domains in certificate