Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.nancywu.co.nz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 20, 2026
Valid Until
July 19, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:7C:B6:44:FF:50:C2:D1:CC:14:53:32:41:F2:D8:B5:4B:32:56:41:05:C0:AB:D6:9B:C1:27:F0:27:B5:E1:BD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
crmcd99.com
www.abitztech.in
abosh.io
netflixclone.animeshbhakat.in
atrialy.com
app.atschat.in
balihotelsandmore.com
whatsapp.bancodeserviciosfinancieros.com.ar
bards.website
admin-dev.bennybutton.com
www.biasharamakini.com
burger250.shop
cb-corporate-finance.com
chatsprouts.com
cheveuxnappy.com
www.chown.org.uk
cleartopass.com
cosseno.com
cricketottawa.com
auth.crosshare.org
baddress.culture.systems
chat.daniel-armenta.xyz
danieldev.pl
de-time.com.tr
deadbeatjudge.com
app.demotime.com
dev-infiniti.pl
plt.dev-ltl-xpo.com
digitalatt.com
www.digitalatt.com
api-doc.doklado.sk
www.donesky.io
www.drgopalsharma.com
www.eduardoe.com
admin.takepart.egg.srl
www.electride.in
admin.emergencyassist.net
app.enterthebibledojo.com
www.gdgmad.com
go-app.me
gorillaterminal.com
gustavfredriksson.com
hackmanhandmades.com
harharmahadevtourandtravels.in
www.harharmahadevtourandtravels.in
wedding.hotarek-ribel.com
instrumentationhkco.com
intellocator.com
www.ishaansharma.ca
istaffsol.com
jessewoods.net
justdebate.online
encuesta-clientes.k-9apps.com
kagitoyna.com
kahanparivarmatrimony.in
kbbsuite.com
inaffect.keynexis.com
krtranslation.com
mapillion.com
maxmorganroth.com
www.medicvoy.com
admin.mfwebdev.net
mint.milliondollarvault.io
www.minepro.global
msarit.com
www.myemployeeisleaving.com
www.nancywu.co.nz
neuraccel.com
newemperium.com
nullflip.com
oklocare.fr
p3s.parthandmadeleine.com
www.qme-ai.io
www.quietalk.com
www.recenter.tech
sadhodesign.com
www.sadhodesign.com
saien-guide.com
scuolacomunica.com
web.seasonshare.com
serveflow.co.il
sfa-ss.com
terminal.sreerams.in
www.startngo.co.in
go.templateapp.co
members.thepcrtest.com
tuvem.com.br
test.tvedahl.se
uaipj.uaitechnology.tech
uddhavbhople.in
ul.no
calculatie.vandervelden.com
pulse.verifygo.tech
parabanking.vryfide.in
www.vryfide.in
whimooncanada.com
t.wiyak.online
wordsurge.app
zibbit.in
www.zippycast.io
Other domains in certificate