Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=web-coding.joshbauer.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
39 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:78:A7:86:A3:1C:6F:B3:34:0A:42:14:2C:E7:FE:9C:62:B6:41:29:C1:D8:4F:D0:B2:F2:51:6A:E8:0F:74:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cristian-gonzalez.dev
www.acheleiloes.com.br
app.all4u.app
www.ambicatextiles.in
www.attorneyismail.com
aviolet.dev
view.awesome-table.com
uat3.ab.ayun.ph
brilliantonline.ai
www.brilliantonline.ai
demo.camino.solutions
health.caveo.ch
www.pgn2pdf.chessvision.ai
app.foreground.co.kr
app.clubsim.com.hk
demopst.ctrise.org
www.devourthefetus.com
auth.edanat.com
pokymon.eu.org
app.exchangecollective.com
www.fadenwerk-murten.ch
facturacion.fraiche.cloud
www.futbolbro.com
www.admin.gapparatus.com
georgeenglish.dev
getbrickwise.com
old.giovanniliboni.it
grandview-fbla.us
testapp.haloverify.com
phoimau.hocchoi.com
iadorequotes.com
www.iadorequotes.com
dashboard.instryde.com
dashboard.prod.invition.eu
ipressoexpress.pl
www.it2benefit.com
www.jeffandcaseyshow.com
jiin.media
www.jimtime.it
joffen.dev
web-coding.joshbauer.com
www.kindergym.id
kinlabs.uk
www.klauspharma.com
www.kompanio.net
studio.kubuni.de
www.malay.dev
www.mathquizily.fi
www.maxspinolo.it
sauver.med.br
hive.megapixelvr.com
mehmetunal.org
auth.mir4global.com
morfemaapp.com
www.motobrain.net
staging.movafitgym.com
scout-admin.mural365.com
natacu.cz
admin.netvetapp.com
www.new-waerme.de
davathai.nextorder.com
nikositech.com
app.ohme.io
peaceda.ru
stageqa7.peppybiz.com
proclavis.se
restcall.net
www.risits.com
rndlab.pl
sarnsri.com
wreckseeker.sea.museum
sethsquash.com
ebs-prod.shadowflips.com
heapsortvisualizer.shubhamistic.com
skoupa-farasi.gr
songbattle.io
www.startupbyt.com
www.stevenshockley.com
bnmit.iedc.tedoratech.com
tenone.one
www.thalitapassos.com.br
link.theorange.io
thomasweiland.de
tigerlilystudio.in
portal.tippytoes.us
www.tldrcomicbooks.com
tmtt.link
a.tommylam.me
turingscode.com
www.tyer.se
uappemall.uappe.com
www.usual.io
app.utmlinkmanager.com
home.vieathletics.com
www.vzljotasia.uz
www.watumedia.com
whitsbits.net
yes4catalog.yesmktg.net
www.zec-archive.com
www.zitounapressing.com
Other domains in certificate