Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=damosmedical.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:91:D4:42:51:7F:DB:CE:91:0C:50:D0:4F:4A:42:40:CC:19:2E:0C:C4:BD:4B:22:3B:6F:AD:6B:B3:09:52:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dizaen.co
www.360business.photography
www.a2zstake.com
www.ajplumbingllc.com
www.alaxsa.com
alp.ac
amandatanguay.com
american-trenchless.com
amirtadros.com
www.amsuarez.com
arkwd.com
atunicorn.io
rfh-val.autolomate.com
avajake.app
wishtree.bien.ltd
editor.blinkenrocket.de
brianritchie.me
campnavigate.org
admin.careerbase.co
carpoint.agency
tool.click.fan
www.cliffw.com
gpt.codexplore.fr
insat.nss.com.pt
yusufcolakmedya.com.tr
contratsdetravail.com
createbib.com
www.cwsystems.com.br
damosmedical.com
darumapagos.com
virtual.deltakosmos.com
dfree-fb.dfree.biz
dmauthpoc.com
dopomoga2022.org
edwardsmyth.com
effigy.im
www.excelorindia.com
admin.experiencebobcat.com
jcal.fairycat.biz
ffstats.io
iwd.gdgahmedabad.com
getfabriq.com
hagenboard.com
hancyapp.com
hnki.fr
horizon-education.ro
dev-bopis.hotwax.io
ineedyoga.pro
prosaemporio.infinitifood.com.br
www.intersoftone.net
ishebig.com
www.islatec.com
www.ismelearning.org
cp.iterrainc.ru
itinerify.com
jdjtechnology.com
jibi.co.jp
link.jumperapp.us
about.kauche.dev
staging-newweb.knolskape.com
lauracastaldo.it
app.lechef-mobile.com
lookaluka.com
to-do-app.lucianiernye.co.uk
materialiedilidamelio.com
meplanejei.com.br
mlg-tech.com
link.mooov.io
qr-note.mox.si
mydoralresearch.com
indulgedistribution.mytrace.com
babor.next-audit.de
link-pwr.nibo.com.br
pianolessonsstalbans.com
prayforamerica.app
readquranonline.org
pac12.repapp.co
bg-studio.ryky.tech
learningsuite.seekinnovation.at
blog.shreyanshjain.dev
signaturio.com
staging1.snkrradar.com
sonatic.app
www.sorbelo.com
www.sourcream.uk
stjudefoodproducts.com
www.swinglinefarm.com
admin-staging.telosconecta.com
scheduler.thegotiger.com
vedasar.in
cdn.vidoctor.vn
namakkal.vishnutaxi.com
waysangsa.com
app.winkkee.com
tgt.wip.la
womsly.com
driver.yardhostle.com
prescriptions.yourphysiobuddy.com
yourslash.com
www.youzag.com
Other domains in certificate