Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=leesander.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 20, 2026
Valid Until
April 20, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2C:A8:3D:64:55:AF:67:1D:75:D6:55:70:FE:7A:FF:AE:6B:90:4B:0F:CE:01:4A:BD:11:18:6E:F1:35:10:D0:83
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cybertruckwiki.com
adityatejavemuri.in
agendakit.com
anomalousauditoryresearch.com
www.assinante.app
admin.barroisantiques.com
becalis.com
staging-experiences.benguelacove.co.za
bertmark.se
www.brainsderby.com
brewbook.club
bysnowandco.com
demo.cargoflow.ch
www.chronovault.app
cismacore.com
sumukhgroup.co.in
fove-demo.login.cog-selfcheck.jp
condominder.com
www.cristinacho.com
curatedjam.com
connect.cureassist.co
dannybsullivan.com
lydear.deweysworld.app
fdl-custom-domain-test.domainsfordays.net
applinks.dominospizza.es
duque.bar
pdv.eceos.app
www.epil-nch.ru
www.eupraxialabs.com
fairy.world
ferrymarroc.com
www.firealarm.design
contest.flipaclip.com
identity.getyourguide.com
buydev-links.gojabu.com
googel.app
kiosk.grace.app
greenlandblue.com
hikmasolution.com
www.hotelcilantro.com
www.hpdreamlandadventures.com
www.ignition8security.com
illuminateuniverse.app
www.inventonater.com
waclab.io.vn
ixa.tokyo
nerdspace.jeanhumblot.dev
email.fb.kandabis.be
www.kaslami.app
killedbythegalaxy.com
www.knicklab.com
koldasoft.cz
learnandearn.in
leesander.com
lgtech.autos
www.lucianoivansoro.com
privacy-dev.migolink.com
www.modular.cl
monamiraxa.com
www.myadidasgolf.ca
myphototools.com
pic-feniksscasino.mentor.neccton.com
pic-rikstoto.mentor.neccton.com
nestscore.co
www.newwavesensation.com
default.openreads.xyz
orbix360.com
outdoapp.pt
og-dashboard-cdn.outgrow.co
paigham.app
patialahouseentertainment.com
www.previsitprep.com
proage.sg
www.punchay.dev
blog.purushotamjeswani.in
admin.quickcheckoutpage.com
gd-sch.randy.ltd
www.ravihomeloans.com
airline.relay42.dev
replaylistings.com
reservationmanager.org
serflexcorp.com
simplysunnah.com
sinsenstudio.com
new-backoffice.soylatte.skooldio.com
stemshopkenya.com
techdigitalcard.com
business.staging.terminio.app
myth.thehyve.xyz
www.thejusujith.com
topmeup.store
trange.app
travelor.app
forest.turnosweb.app
www.turtak.com
www.univentory.io
login.stage.weje.io
wethepeoplewatch.com
open.whiskay.dev
zinglio.com
Other domains in certificate