Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=members.boxscorefitness.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 25, 2025
44 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B4:50:F9:6D:CB:D4:B0:E9:22:80:43:C9:61:E2:47:19:A0:34:73:42:00:E9:63:BD:11:21:49:E7:A7:7E:8A:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
drpravinrane.com
631am.com
www.8-away.com
adamsaadi.com
app.alcancia.io
www.arjunkannan.com
www.array.ie
beta.askclass.org
atise.com.br
hyundai-staging.autoroot.ca
awelcomewalk.com
delivery.baumlanus.com.ar
bbbl.app
www.biotechquity.com
instore.blvrd.de
botelhos.net
members.boxscorefitness.com
ppp3.bte.com.au
running.calebglass.com
short.campustree.live
stg.labeling.caneat.jp
chaletstrom.com
chancecalculators.com
chugmustard.com
login.clientchatlive.com
3dgs.coralgardeners.org
coudin.com
crestsecurityreview.com
bizcard-gocorp-cms.cube.id
score.cynch.com.au
dguidetours.com
d1-mycollections.dpd.co.uk
sienacot.edu.ph
elevateyourlifenarrative.com
valhalla.ellie.so
emmasrestaurant.com
www.eugeneyunlaw.com
portal2.falconbrick.com
www.installers.fastsignsdev.com
filmcraftstories.com
app.flutterui.design
orders.freshnlean.com
furukawa-gumi-company.com
geyserfix.com
www.ghost-journal.com
global-forge.com
fleet.gogpsgo.com
gowalk.com
greysonalloys.com
guidancespace.com
gustavopflores.com
haul.club
healinghandsdeb.com
helpcomply.com
homeoffice.coffee
www.hylub.com.pe
immodigi.app
login.independentpaymentservices.in
staging0.web-test.insent.ai
www.jellyfish-social.com
josiahalbert.com
lifestyle.kaisonline.com
kallisto.it
rummy.kchopp.com
www.keeganwoodburn.com
www.kingcountypsychiatry.com
kq-cyber.de
learn3d.io
listorator.lonski.pl
policies.marvlist.com
gesturego.matchlab.sg
plug-for-promo.memory-lovers.com
app.mqtt.studio
myux.ai
newhavenseo.co
www.notaiofalcinelli.it
preview-studio.oneai.com
www.palestinequiz.com
paliquiz.com
m.pimentel.do
lp2.postal.gift
lp4.postal.gift
proxy.powerpi.hu
app-staging.presscleaners.com
www.psicologaspinetti.it
liste.qleq.be
qmdclub.com
rosiehitchins.com
rppl.app
store.sagaraglobal.com
salsarod.com
truckingservice.studiossolution.com
supersaga.app
ai.svadola.se
szkolawzasiegu.pl
semadashboardinternaluat.talktosema.org
tanukabhadra.com
www.teamtogether.se
xpresslearning.com.au
yaadmanonlinedelivery.com
Other domains in certificate