DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=stratford-upon-avan.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 16, 2025
Valid Until
February 15, 2026 78 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:55:CC:7C:6B:3D:27:C5:C4:7A:BC:02:02:9F:00:18:E2:81:E6:9B:A7:D8:AF:FE:13:6E:F9:05:BC:C0:F6:4C
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
driver.bb-delivery.iotready.co

Other domains in certificate

www.acutesolution.com
www.aicloudconsult.com
anvil.capital
asyncteacher.com
apisclassroom.auxswot.com
beerbets.com
www.beerstory.io
www.billthecloud.com
www.blackgreenstudio.com
bowhead-games.com
www.brentwong.me
links.dev.bunnybank.net
test.butihaveaplan.com
www.celer.one
cerexperiencia.com
cetcaba.com.ar
chaptergenie.co
customerapps.cleantie.com
us-qa.cloismartlift.com us.cloismartlift.com
teledoc.apptech.co.in
clinicdata.co.kr
www.codigoaustin.org
www.hepatil.com.pl
link.corarl.com
creativecontractingllc.com
link.big2.cubeace.com
cypherlaunch.com
www.webapp.dailybreadapp.com
offre.datawin-pronos.com
schoolapp.devridezum.com
dichotomy.ro
foodapp.digivogue.org
dyslexiatutoringnz.com
easypainaway.com
eieio.xyz
infinite.play.emr.studio
www.evdeyemekyok.com
fandomchart.com
dlinks.farther.com
expo.fishfacts.com
api.formtoro.com
fovup.com
link.gasable.com
network.ghiveci.com
glitzcoservices.com
www.harryjacks.co.uk
www.hazem.dev
monitoring.hellozelf.com
report.hellwach.io
hexa-lite.io
www.hirushakumarasinghe.com
homehero.live
howdyhow.com
auto-lavetka.if.ua
demo.guardian.inpulse.education
etdmr-id-testing.input4you.be
app3stg.insyncapp.io
landing.interoplab.nl
workfair.jerwand.com
jorgeescobar.net
kaisonline.com
www.kedotaphysio.com
korlish.com
qa-dev.leadpiperhq.io
v1-qwk-dev.da.letsdive.io
app.lightninglinkja.com
livkora.online
lumbunglabs.com
mminfraprojects.com
www.mypersonaldev.com
phonehubgermany.de
prism-qoze.xyz
www.propefy.com
www.pttrn.io
qiuyanpeng.com
quicknique.com
raoulgrouls.nl
www.resuranker.com
torneos.reva.la
www.sagasys.tech
saprandesign.com
pray.scl.church
app.sercom.io
shriprayagdham.org
skaneat.com
app.smarthelper.ai
www.solcall.com.au
stratford-upon-avan.com
strom.talkmore.no
thebellwoodreeffishlab.com
therealcrm.com
thrive-designs.com
vts.torqiot.in
host.unipos.me
www.vyomr.in
wi.th
x-grow.ai
www.zerin.tech