Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ghidetti.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:13:71:E5:A4:AD:8B:86:6B:2D:0B:CF:02:B5:FB:2D:AA:45:63:52:72:1C:53:A0:35:C1:39:B5:3F:23:AE:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
devport.ru
abelanski.dev
aestribra.com
agilemeter.io
amparosec.io
uefn.anotherworld.gg
www.asaa.at
www.astejeservicios.com
banking.audaxdigital.com.br
awaydays.app
www.axonapps.net
www.bhumikasood.com
bitofhelp.net
www.blackhousegames.nl
carlos1984.com
direqt.chatbot.gallery
corgidudeai.chiangmaimaker.com
cloudexchange.lk
pberm.ktc.co.th
commentextractor.com
cord.tech
crktr.com
devsauce.io
www.directdisinfecting.com
app.domoblock.io
energieberatung-irschenberg.de
eportal.epsturf.com
www.firstchoicemerchants.com
flo-codes.xyz
fortunaoliva.es
iframe.geovinum.app
ghidetti.com
marketing.godamwale.com
gtaswift.ca
app.gypsian.com
haidangnguyen.de
patient.hellodoctor.com.mx
estate-cms.hicity.world
hitrolls.com
hydropony.pl
manicaa.impactwrap.dev
my.impactwrap.dev
indicamaisarbore.com.br
kioskdev.inseat.menu
jongbonga.com
sok2.katalysatorduravermeer.nl
www.klab.app
www.krushikrantibiotech.in
department-of-addition.leanagility.com
www.lesspoly.com
book.littlecitytreat.com
marvinneumann.com
mathekoenig.com
add-stage.meeter.de
meshinfrasoft.com
taxbro.mngqibisafoundation.org
www.moneytize.me
www.mytechdreams.com
app.nautime.io
nemocare.in
storybook.noyoconnect.com
octobookapp.com
stp.optimum-transfer.hr
trellidorservice.oz-tms.com
bt-poker.paul-consultants.de
jp.peeeps.app
prealyse.com
randomhero.app
redspotagency.com
asset-management.resre.bm
www.salonepettinemagico.com
www.samudera-jaya-sakti.com
www.simpleclub.ch
spartan.site2020.com
subsoo.com
superpenguin-finance.com
krzysztof.szularz.pl
beta-demo.tallyfor.com
fabio.tamburini.dev
tartugeo-podcast.com
tatoonaak.com
link.teamlinkt.com
www.teammaster.in
tge.fan
fb.thejaavapot.com
thevalueofservice.com
togather.ai
demo-a.travelnow.app
www.triclubchallenge.com
www.tripiandofood.com
umanity.io
deepside.usepod.com
ahrs.vidocto.com
qr.visorus.com.mx
admin.voicex.vn
waiterprofast-catering.waiterpro.com
www.wildwoodmfg.com
www.zegetech.com
ads.zeoroute.com
college-demo-experience.zizoapps.com
Other domains in certificate