Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=tanizawa.wowdesk.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 07, 2026
Valid Until
April 07, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BB:3B:74:CB:10:13:15:D1:D4:FD:77:4D:FB:C2:BD:B3:C7:96:B1:62:5C:21:3D:5F:4A:01:DF:6E:65:DC:D2:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dn.com.uy
parkering.advokat-t.no
parkering.advokatt.no
adworks.space
stowe-transportation.get.alpinemedia.com
promptfy.ancoraimparo.io
www.escalasmais.app.br
asurrobotics.in
pfd.bakusoku-pro.com
www.beaucoiffures.nl
paichal.bhktools.com
blackstarlegal.org
iap.bristowtechnical.app
bestellen.buendergrill.de
www.bunchee.dev
chkcal.com
thayam.chozhanaaduapps.in
app.cnbctv18.com
www.mvrc.co.in
digitalpeople.co.kr
www.cpak.co.kr
runnables.co.th
ala3raf.com.eg
portal.inq.com.ng
www.tsis.com.tr
commitquality.com
cpapp.me
www.cristianarmasmorel.com
www.cryptobotniks.com
dashiq.ch
admin-dev.deeddelivery.com
dragonconstructionind.com
www.dragonero.es
stage.admin.dresez.com
x0j4.easyapp.co
alber.erasolutions.sa
fin.escobarnavarrete.com
volee.estro.ai
websites.exceededa.com
fitinsights.net
plan2026.gestaoimpacto.com
gext.it
clocktower.glasmerio.uk
handtmann.gocad.de
pay.sandbox.example009.gr4vy.app
japanese47.id.vn
www.invariancequestions.org
academy.ironsoftware.com
iru.bg
www.james-riggleman.com
url.jk1dub.com
app.joinladder.com
dhouha.khaldi.dev
www.kuroshio.online
app.leniteam.com
lexandtechconsulting.in
dyn-prc.ltl-xpo.com
mikekitchell.com
mindhavenmft.com
www.mkteck.co.za
www.mlinshort.com
mobilogical.com
app.moonrise.com
moroccolor.com
app.msbauheld.de
admin.mssdev.works
mybiio.com
mysweethotel.eu
geoassist.nttdata-ccs.co.jp
lions-forest.p-e.kr
paycalc.ro
f003.petclinicbooking.com
mobile.picturepairs.com
pvlhub.com
rn.sa
ruusutorpankone.com
web.sangfah.com
www.seasostenible.es
shamstailors.in
shieldtune.com
jp.sinoai.com
tickets.sjc.co.za
apra.sncr.dev
observer.socratesdata.com
soumalya.in
www.stanalytics.it
www.start-react-native.dev
stempl-app.de
pettag.tagnetic.nl
letsdog.techzaken.nl
www.thedrunkweb.com
freelibrary.vandlee.com
fr40300-orders.waiterpro.com
fluttercicd.wonkytech.net
worldsgreateststory.com
tanizawa.wowdesk.jp
landing-dev.xpersity.co
f15246eb6de148b2834a4ff724cf8148.yotepya.com
dev.yottaacademy.com
zhenghaoya.fit
Other domains in certificate