Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=rungordon.run
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FA:E4:09:09:BA:C9:44:37:F4:19:04:F4:0F:61:F3:8B:C2:43:1F:81:69:1C:31:C9:EB:D2:6C:14:89:53:9F:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dizzy-di.com
www.adelonzeta.com
app.adminpanel.no
staging.aerosens.com
alignmates.com
www.almaprojectz.nl
www.annahdo.com
ant-gravity.com
arcticairports.fi
beachavenue.studio
app.bioteksa.com
blausm.app
dev.boaapp.com
bongda.eu
bradenrivertrading.com
www.bravelycultured.com
www.carpoint.agency
cc.recipes
tstrc-applinks.christiancinema.com
dev.clariti.com
phnompenhtimes.com.kh
uysalburak.com.tr
craftkart.co
www.createdbytimphotography.com
d.cube.coupons
cupmethod.com
dalgona.club
www.danielokeyokoro.com
auth.densonicsimaging.ca
work.diskito.eu
academy.dolomiten-tennis.it
droidslife.com
duma-z.com
insight.eckardenterprises.com
console.admin.ecosys.mv
einsatzsimulation.com
cal.eterminy.pl
app.staging.fitnesspilot.com
dev.forecash.io
hammeredheadz.com
devportal.hausvalet.ca
vs1.heinrichs.tech
heirdata.com
www.hsechoir.org
icebreakerman.com
imbianchino-perugia.it
implit.nl
inoapp.com
eco.jau.co.jp
jedswanton.com
jointherefolution.com
auth-staging.kasheesh.co
kauavitorio.com
www.kazatangames.co.uk
www.kinagrill-horsens.dk
www.kworkelectric.co.uk
www.laslilasodontologia.com
www.leah.com.br
etags.lmes-phygital-dev.lmes.cloud
lorenaceccacciimmobiliare.com
lucoffeehouse.com
www.lumipowell.com
maxiliftoffers.com
dl.medipass.me
master.minutebox.xyz
first-flight-claims.monkeysource.co.uk
swap-widget.moonfi.com
muh-ahsan.my.id
www.mysteriousjk.com
www.nebulasoftwares.com
nflfantasyplayoffs.com
app-links.novelship.com
www.ogabook.com
learn.omicslogic.com
marketplace.openblox.io
opuluxe.it
quark.otherg.com
ourashutter.com
app.personalisedsurgery.com
app.physiomeets.science
rungordon.run
tiktok.sagaraga.com
zamowienia.sandwiczszop.pl
pensioenbij.sevenhuysen.eu
websams.silverton.de
site-checker-63e88.studiodesignapp.com
app.suirtech.com
tenant.tapacenter.com
app.tejasc.in
thevrgroups.com
crm.togawaengenharia.com.br
sms.trekk.site
loja.txapita.com
v1.typus.finance
app.ucall.asia
app.vancouverartcompass.ca
viewchinese.net
vitalco.com.ar
dev-app.wpstar.io
water-restrictions.yardian.com
Other domains in certificate