Open
Cached
·
2h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cognitivetesting.online
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:6D:1F:75:20:47:9E:58:4A:79:0D:80:3B:91:48:D6:5A:70:66:FD:28:32:F6:E6:16:3B:8B:64:7D:D4:76:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
educationencompassed.com
www.24studiosplatform.com
www.adtag2win.com
go.mehobarim.aimpact.ai
sivaganga.anbudroptaxi.com
appdell.com
avant-garde.ai
coimbatore.azhagudroptaxi.in
www.balahanuman.app
glomocontinuity.bbva.com.ar
beforethebark.com
bulgaria.biobarica.com
booking.bonheurmusic.com
link.busykid.com
credenciado.c3service.com.br
tokipona.cervonwong.com
cider.chezzy.ca
chriscostanza.com
cognitivetesting.online
room.cole.la
collinlidstrom.com
dapurpintar.id
darkfindr.io
qc-staging.divvyupsocks.com
forms.docket.works
etain.club
everhartprecision.com
f-billing.com
flys.com.br
myfttp.fttpretoria.org
gameonesports.co
www.gawlati.com
sincerity.gitroops.com
glaze.chat
admin.glycanage.hr
gmll.app
app.goedbeter.best
petals.gracielasmet.com
juggle.gschall.ch
www.healthmate.fitness
www.helenallop.com
training.hipaamate.com
www.ibg.kr
www.idaerik.se
interactive.training
dl.zxc.io.vn
jfbchurch.com
jhilmil.live
dashboard.juntofinance.app
kathrynaholston.com
student-dev.kyons.vn
www.landmarkt-sankt-maergen.de
planodeacaomia.marcosinacio.com.br
paste.marfor.io
cryptle.matthewgraham.me
mediacreationtech.com
app-production.medzy.ca
test.hoosier.millisite.com
mladentesicart.com
mypunchclock.com
nash-zavod.ru
netzbh.com
www.nine1five.com
www.nitinrana.com
noahdamery.com
olesangels.org
prueba.admin.citas.gsi.org.ve
otojet.com
pagcomanda.com.br
partialsband.com
go.paybird.app
app.pilly.kr
platformescape.ru
beta.pokerwitch.app
basket.qu3ry.net
app.recocards.com
search.reptile-database.org
www.retinams.com
sample.rxurl.in
www.sensemaya.es
shinepay.io
www.singintherain.space
specialday.app
www.sugalaa.vip
supertechindustries.co
thebeatrixgirls.com
www.thetavern.io
dashboard.ticktalkto.com
www.tvorimezbysov.cz
staging.undermrkt.com
urbid.org
app.usestrive.com
utilery.com
portal-preprod.vr.world
www.wallaceapp.io
hgc.whyq.com.au
wylynko.com
io.zaynaxhealth.com
www.zumspot.com
www.zyphlegal.com
Other domains in certificate