Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=swingrennes.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 26, 2025
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A8:B5:C8:F7:51:23:EB:77:99:1C:09:97:F0:AA:71:F9:33:42:E0:97:61:86:1D:C6:1E:F7:67:22:83:44:1E:1E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
corequ.com
www.aclean-acc.com
app.activeviewer.it
app.aguaytea.com
aiguadolc.com
appsnowball.com
aquiserv.cl
app.artnresto.com
aryantechworld.com
uat.auyea.com.au
ayantech.ai
baumanntennis.com
haku.beautycounter.com
www.benharrison.dev
app.carbmanager.com
chatseekr.com
dl.checkuphealth.co.uk
chulocoinonsol.com
clairebeauregard.com
lp.clicou.app
closedcaptionunity.com
www.ikidsart.co.kr
www.coderblog.dev
www.collagebattle.com
admin.comodohotel.app
user.convercus.io
www.cosmedical.ca
darkimmune.com
cdc-dev-web.deepq.app
deepshotai.com
divyan.info
www.dlnr.dev
staff.douvk.co.uk
auction.drivecloud.com.au
old2.dytechinc.com
e-hcfa.com
lp2.easyinsole.com
xi-dh.elementx.ai
eleventy.be
www.eurobeantraveller.com
iot.exflair.com
explorethecity.it
bartelsdatastore.felixxgroep.nl
festivaldocafe.com
a0ca.foodle.su
testing.foodworks.online
getelleratlet.se
nft.goingtospace.com
app.gtraders.de
headsup.hockey
api.hellokms.com
www.htmlhandbook.com
www.icivilsa.com
topgunrewards.incentable.com
inoselrapor.com
iograft.com
www.itsshubhaofficial.com
neom-cms.itxi.aero
www.joannasimpsonmedia.com
juliane-und-denis.de
kiran.ai
kodlash.com
kouhobi.com
kwekusmoke.com
partner.loadbroker411.com
www.m-caliber.com
www.malyctenar.cz
mavran.com
mikeglueck.com
app.mocklets.com
mokin.nl
www.mycopanda.com
mypkweb.com
www.neogold.app
nevercheckabag.com
niveshchakra.com
test-func.noneho.com
www.onlinetestyap.com
www.otespresso.com.au
mooncake.prl.one
www.programavimo-paslaugos.lt
prometeu.cat
cogasucre.pujasweb.co
ie.radioplayer.app
mobileapi.radiotoolkit.com
raylabz.com
redandoford.com
www.scorebug.online
sisubastasinmobiliarias.com
stylizt.com
bodaschildknechtmallea.swanmoments.lat
swingrennes.com
auth2.tipsy.chat
www.transfabrica.com
www.twisleton.net
usmonumentalchoir.org
voxprop.ai
wayz.app
business.openmob.yodelit.co
cosmoseye.zense.online
Other domains in certificate