Open
Cached
·
6h ago
86/100
SECURITY SCORE
Certificate Information
Subject
CN=farhanaaktar.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D6:15:FD:31:24:03:A7:76:84:DB:75:E0:AA:DC:CA:10:11:5D:11:D0:9B:9A:EF:66:BA:A9:0B:8A:B3:57:D4:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Basic
default-src; img-src; connect-src; +8 more
default-src 'self'; img-src 'self' https: data:; connect-src https://dcs-api-staging.herokuapp.com https://dcs-api-production.herokuapp.com https://www.google-analytics.com; font-src 'self' data: fonts.gstatic.com; script-src https: http: https://www.google-analytics.com 'unsafe-inline' 'unsafe-eval' 'self'; style-src https: 'unsafe-inline'; object-src 'none'; frame-ancestors 'none'; base-uri 'none'; form-action 'self'; manifest-src 'self'
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cua.philanthrosphere.com
demo.philanthrosphere.com
ai-agent.active121.com
akradservices.com
www.anagoesyee.com
askquickbites.com
www.astonich.com
avintr.com
hcs.backpackfordrive.app
bazardeturismo.com
www.beespilot.io
sulun.bel.tr
bigg-foot-games.com
www.boegballen.nl
page-qa.brokerbay.ca
pages.app-staging.c-rayon.com
canvs.app
careduct.com
gincana.cesisonhoinfantil.com
preprod.chroniclebot.com
aljassim.claudion.com
rollcall.clockwork.ws
www.codeatorium.com
codecycle.com.br
commalert.app
sttdongluc.congso.com
app.convergeretail.com
degenmerica.com
digiguide.ch
swfornoodle.dimorder.com
portafolio.dylandata.site
eqliquid.com
ness.ezly.space
farhanaaktar.co.uk
providers-directory.findmymethod.org
firewidget.app
mirho.flockim.com
fluento.ai
beta.flywheel.autos
erickayma.gaedet.com
geovanecavalcante.com
preprod.geovinum.pro
sorh.gescom.nc
www.getdona.xyz
getrealexperience.com
pro.gosweetsgo.com
gsp.id.vn
indcommerce.mx
jamesjquinn.com
coding.jyhs.kr
keepitsix.com
kuakka.com
linusthorsell.com
sh.livearf.com
simulate.logifuture.com
reweigh.ltl-xpo.com
old.masterlistai.com
mazapancerezo.com.mx
app.gastroview.med.br
hoetespri.medieteknik.com
meetsalty.com
meowmatchr.com
www.millennialsprime.com
www.moistchameleon.com
toserbaonline.my.id
auth.myur.app
dashboard.mzcf.org
www.notiz-app.com
onandoffagency.com
www.onewaydroptaxi.net
partypooper.am
patricksharpe.com
pemaquidpress.com
www.pertaminainvestorday.id
ai.prayogeek.in
auth.printmeup.ai
app.publinote.xyz
hangover.quickpass.app
recantosavana.com.br
revelations.vision
rminternational.in
www.roastme.fun
ai-clicker.rudeboy.dev
rukinix.store
plinko.runaway.games
www.sdholdsworth.co.uk
shafwa.space
share.staging.skroote.dev
bodahernandezfuentes.swanmoments.net
syclops.dev
app.tablechamp-dev.at
www.teachaids.org
play.theawesomegame.com
sviewer.tri3d.in
www.tully.page
virajsavaliya.in
vscreen.co.za
yijidangqian.xiti-digital.online
yusufstudio.tech
www.zwip.be
Other domains in certificate