Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ammasi.algojaxon.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
40 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:DB:4A:B6:6F:E6:1E:63:B9:80:F4:CC:F1:7D:F5:D1:7E:A3:50:0B:5D:32:D7:84:A5:8F:F2:94:5F:BB:05:E0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dpollera.com
www.academy-courses.com
www.adhocit.dk
adigital.cards
airone.asia
ammasi.algojaxon.com
www.amorimdecoracoes.com.br
www.anthonymuthuma.com
www.apenrots.info
appcardx.com
archart.ch
ascendclimbing.app
spesen.axa.ch
order.dev.azzle.com
admin.babywise.dk
test.bakestudio.in
bakmet.pl
behaviorhq.com
bhavinpanara.com
www.bigtreeideas.com
www.blogletter.cz
boardgame.bymile.site
campionissimo.nl
app.careerpower.in
app.caricami.it
www.cesarnorena.com
chied.info
design.clzns.co
familytrip.ynet.co.il
maker.coinquoter.com
app.identityproofing.coltonwilliams.net
uninus.com.tw
promos.completevocalinstitute.com
app.continyoucare.com
countrywafflesmorganhill.com
crowdscoreboard.com
hourglass.dasoft.ca
mvp-next.datatile.eu
app.dealercurator.com
tool.demochrome.com
doyouliveinademocracy.biz
www.dryg.net
ebayvehicle.com
elarteacuchillo.es
emilioguitar.club
entrust-assessment.org
eveindustryplanner.com
francedrafting.com
www.gesundheitszentrum-hollabrunn.at
www.goholycrossclinics.com
www.greenkleenoman.com
www.guide2sarajevo.com
hippr.org
account.homehub.site
llm.hub9.io
www.idecult.cl
identityswitcher.app
itms-homepage.infodation.com
instechsolution.in
qa-teregalamosunseguro.inter.mx
student-kpl-stage-5.ischoolconnect.com
www.itsmi.store
www.khazanaproperties.com
www.landesmark.com
precios.latamfenix.com
broadcast.live.inc
demo.majchrzak.info
www.makingarchitects.com
manager.staging.mbmenus.app
washers.misterlavaggio.com
www.mountainmist.in
mxmalykhin.com
www.naturalisation.live
batteki-staging.neopa.jp
nextops.io
nourlawyer.com
kdramachat.pixels.im
blog.puur-eva.be
www.randomideastore.com
www.sandblad.com
scruffyclean.co.za
selector.io
singinglessonssheffield.com
italy.solomonschariot.com
starmandala.com
mystorypoint.studiocloud.dev
www.sunsdresura.lt
dev-fm-generic-kiosk.supersonic-fm.com
tbint.com
www.tenra.co.jp
teodorstoev.com
perceelwijzer.acc.thenextapp.dev
passwordreset.tieredtech.com
dev.tiptraxx.com
www.viv.dev
www.warhammer40kbuilder.info
workteen.org
www.wrkcmp.com
www.xiaoyifei.com
www.zihuatanejo.works
Other domains in certificate