Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=starwarstheory.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:71:91:0B:3A:9F:C7:37:2B:9B:F8:8B:9A:0A:B9:83:94:22:E4:34:E4:96:24:BF:96:0C:4B:7F:A8:68:C7:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
enroll-dev.traktrok.com
130rqs.com
lamarca.2na8.dev
www.3bblimited.com
www.scooter.48s.io
www.99active.de
auth.adio.eus
agilissimo.se
facilitta.app.br
www.artbeatentertainment.com
www.ascii.fyi
www.bared.au
backoffice.beecowork-rennes.fr
bendy10.com
walmart-stg.braid.health
www.wave-length.com.hk
bills.contrall.ro
cupcat.games
daikanyama-sanpo.com
www.vvl.ddmpraha.app
app.cemex.fabrica.dev.br
tile-puzzle.hirata.dev.br
dialinespresso.app
digitaltranquility.nl
q1-myshipments.dpdlocal.co.uk
www.drkiransdental.com
www.eirinc.jp
www.flag21.xyz
www.getoy.org
www.grctechme.com
www.grottanorthernlights.com
www.gutterguys.co.nz
api.gwjgames.com
www.hongphuc.top
lowermorden.horseriding.app
threshold-management-uat.hotwax.io
emrp.hugebelieve.in
hyperact.uk
xuanmy153.id.vn
www.inblockdesign.com
induro.io
insanewriters.org
isosolutionbd.com
www.jackpawela.com
joepvandepol.nl
lab-keiba.com
www.leansupplychain.net
www.linda-jakub.cz
pagar.magalu.com.br
sales-test.maghrebsteel.net
mallline.org
www.mangaxmanga.com
mapa.marketindustrial.com.ar
wingarc.meetventures.com
mhuijbregts.nl
links.droom-stg-int.account.nasta.co.jp
superstar.stage.neoufitness.com
app.novva.life
noyoga.org
www.pahlischhomes.com
pamerak.al
auth.pollinator.coop
aerocaster.qweasd.net
hbsfacil.removis.jp
roameeo.com
www.rudracrackers.com
www.s44.tech
seller.sellonapp.in
shinken.site
evdrivers.sienarsystemsmx.com
firebase-backend-dev.silentbeacon.com
www.speednoisemovement.com
starwarstheory.com
qasign.studiossolution.com
www.sunbirdcamps.com
api.superfrete.com
suzanneraaijmakers.nl
cron.svev.dev
lms.teenycoders.com
www.tehillimteam.com
master-sa.tinycharge.xyz
www.topprice.ru
staging.touchway.com.br
link.tpark.io
appconsole.trackandtrail.in
trovemate.io
scorm-app.vindicloud.com
vorplive.com
www.vshredoffers.com
photo.vyeron.com
dx.wearsafe.com
dinespire.werner.codes
www.white-rhino.jp
app.workserver.cn
xcapeinc.com
xlending.cc
terms-of-use.xtoearnings.com
yescrepes.cz
mafia.zhebil.com
checkout-goerli.zksync.io
Other domains in certificate