Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=blisskart.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 20, 2025
Valid Until
February 19, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9C:E9:B6:35:28:02:AC:F5:08:16:77:6B:CB:1C:64:5C:5F:C1:FA:96:23:02:89:0E:AF:40:75:7F:87:F6:64:21
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
diofa.hu
stage.freedom.5f.app
ordini.angolodellafrutta.eu
www.appliedsentience.ai
ashreinu.app
aureocode.space
k.auto-quality.in
beatriceilsaporedellarte.com
www.beec.in
blisskart.in
share-dev.bokadirekt.se
borgo.app
applink.byplay.io
callumwright.co.uk
ccain.space
charinkomachine.jp
kiosk.newtown.clinic1.one
lab1.cloudsensitive.com
hemlibra2.jw-pharma.co.kr
mlifesciencekr.workflow.insand.co.kr
applink.heliot.co.th
link.cracktech.org
ddesaitech.com
dedatabakkers.nl
spell.stage.doodlelearning.com
durianboat.my
itempire.easysignage.app
app.ebunker.io
edelfall.com
www.emdr-space.com
customer.enchap.app
endoftheworldpodcast.com
www.emanuel.eti.br
evertrustsolutions.com
web-old.dev.fealthy.app
fedyashinportfolio.design
furaginum.pl
www.garage.id
admin.gardez-votre-permis.fr
www.happyanniversaryrachel.com
md5hash.helpersfy.com
s.homepage296.com
acacya.i-taksy.com
iforge.net
iimpa.in
incident-aware.app
directory.ingagepartners.com
jannismichaelis.com
app-staging.joindistinction.com
foto.kralovi.family
admin.x.loplat.com
central.m3dic.in
maiko.company
manaintiruchulu.in
mckaycourt.com
secure.migolink.com
test.mobiry.jp
login.murf.ai
app-test.myplayer.io
www.mysecretsanta.co.za
nasportshow.com
nateferrero.com
board.nesstechnologies.fr
www.novcon.app
oncloudnine.io
pabloangelone.com
branch.paycloudafrica.com
phantomcharters.co.uk
productdeck.app
psychologyserviceslittleton.com
quantifiction.net
cl.sub.quq.me
www.realpsychophysics.co.uk
si-wylly.roadzen.vision
www.routeforge.app
rwgroupbenefits.com
samfentress.me
meetings.sef-academy.fr
invite.selfcontext.com
sellwell.info
www.simatix.io
sourcream.uk
spacewalkautomation.in
do.sporttiming.app
startlink.io
thecostofcare.org
tiffinshala.in
tiponapp.com
www.traditionequipment.com
demo.fas.trayn.app
app.uniobrainwavemusic.com
unviajeenburbuja.com
payments.upwire.com
www.uscore.app
test.vland.app
www.workout-time.de
workspace.training
redaktion.wuerttfv.de
www.yusufsiregar.com
zebforlincoln.com
Other domains in certificate