Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=itihad.ae
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 11, 2026
Valid Until
April 11, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:C6:21:02:04:2C:E1:04:4A:72:7C:92:B1:4B:B3:B2:7F:49:95:1C:21:50:5C:EE:E9:12:12:C7:86:32:DF:87
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
e2drive.es
einladung.11db.de
www.1on1agents.com
link.2zero.earth
abhisekkumar.in
iwatsu-k.anbi-reception.jp
www.ashoksoniassociates.com
www.backgammon-in-muenchen.de
hope.baseph.com
websitecmsauth.beetek.net
ben-wolfe.com
go.bibaboo.ch
form.bolichecostarica.com
bookshelf.tech
amag.console.bringoz.com
bronxvisioncenter.com
kids-us.byjus.com
byteregister.co.uk
alunos.caioizel.com
www.cetinkayalar.org
www.chess-adventures.com
chinamaster.net
www.chinamaster.net
plotpilot.co.ke
codelab.codes
web3.collidescope.io
connectme.events
www.conversationschool.net
crbalconesdelacarolina.com
darpan360.in
dbs.llc
bible.dhverse.com
app.digestly.ai
www.droptaxioneway.co
x10dgm1mg2q.easyapp.co
www.econblockchain.com
metalland.fi8.xyz
chat.figueira.cloud
www.flourishministriesint.org
www.dashboard.fsv-aptor.com
www.getshopwave.co.uk
globalberries.cl
pay.commerce-vision.gr4vy.app
qa-catalogue.gupshup.io
hangtok.com
hanoimaster.net
www.hanoimaster.net
healik.ca
helloyobo.com
www.hoffmann.holdings
www.hoteldonjulios.com
hrita.xyz
nvl1102.id.vn
indumentariabsport.com.ar
www.interpersonal.work
itihad.ae
data.jakstosowacalericspray.pl
jeyaacademy.online
www.kahma247clyde.com.au
player.kbox.pro
ignitehumans.knovator.in
kyleglasper.com
lms-app-dev.site
www.magicomundo.co
mattiadambrosio.eu
www.mavrosfishandchips.com.au
dashboard.mbmint.com
www.mecheyandres.com
www.milestonemap.org
photos.apps.mukacho.com
nebikiquest.com
wordfirst.nowexalted.com
lister-fb.ordreplan.no
palamarta.com
app1.programaequilibre.com.br
qazan.de
www.qrarte.com
fulanito.qro.mx
reach.rapo.app
redpepper.com.mx
www.restoconcret.fr
rideers.com
minigolf.rocketjumpgames.com
www.safar-e-ibadat.com
sandboxsampler.com
www.satan.website
karur.selvitravels.in
nagapattinam.selvitravels.in
tirunelveli.selvitravels.in
travel.solaris.chat
spiritpixels.in
www.starworldlimo.net
admin.stockmotion.io
app.supertrade.my
patentai.teckgeekz.net
stage-v3.tecore-client-cdn.timeedit.io
www.twicommunity.org
vafh.org
app.vrtuos.eu
hall-of-eyes.wreif.co.uk
Other domains in certificate