Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kailerg.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 31, 2025
Valid Until
January 29, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
52:3C:0C:84:5D:B1:1A:E5:98:18:8C:F0:1E:F0:A9:A1:DD:73:97:FD:EB:D6:8C:61:09:6B:AD:49:C2:E5:07:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ddlconsulting.co.za
www.101cre8ives.ca
www.agcircle.in
www.andrewcloudart.com
dev.ands.app
analytics.aquafacts.com
www.ashfairs.co.uk
avokode.ai
bahcodepos.com
baobeidtrading.com
baruque.app
www.bolengelectrical.co.za
www.brucewaynes.com
payouts.cargamos.com
gcp-us-east1-17.dev.app.carto.com
www.celebratenationalholidays.com
www.cherisewilson.com
mohada.co.kr
link.stg.comipo.app
firebase.coniun.io
cdmedia-various.contentcard.com
criogenio.com
evaluation-masspush-api.dev-karte.com
layer.dexkit.com
dinotronica.com
googlefaq.dmzapps.com
drinkhappy.app
easytechsupport.ca
efecanyilmaz.com
ekhouvanjou.co.za
test.enfoco.red
link.facemagic.ai
www.felipe.run
fiosdesign.shop
fiosdesign.store
gamenightninja.com
generationsteamplanner.com
glime.app
gpibh.com
granthsampada.com
www.gridvote.app
www.habitdaily.app
arabic.halacv.com
hlmason.com
lockbox.hollander.tech
hr-check.online
huskysoft.com.ar
hyggeclub.com
ilotokipona.com
app.imperiumsoft.com
www.itqan.app
wo.ivoy.app
jewishcarswap.com
jiwar.co
kailerg.com
kasgroupapps.in
kerimyakamercan.com
larijani-lab.ca
lendi.app
lucident.app
farmlands.beta.m2x.app
manachlux.com
www.mibrujula.co
mohsan.dev
monkey-pub.it
www.monkey-pub.it
movies.informacion.my.id
app.myhubble.ca
backoffice.neuropatch.com
neuropatch.com
shop.neuropatch.com
datastore.odyssee.jp
one-loyal.com
app.onpointigo.com
demo.optagestion.cl
padelhwy.com
picanna.com
pillswise.com
pn2.app
probikegarage.com
ragingrobot.app
remarket.agency
rkgconsulting.global
sanatorioaltagracia.com.ar
shankhawarfinanceservices.com
sivakasisrivaricrackers.com
www.sivakasisrivaricrackers.com
snappack.ai
stinkbombtris.co.za
hvaler.tallang.no
tarjetasvico.com.mx
thezionhill.co.za
www.thirdray.ai
thought.center
designsystem.topicuszorg.nl
web-dev.trato.com.br
shoppinglist.useful-tools.info
www.weepay.com.br
get.well.ch
bloodutd.wiip.co
Other domains in certificate