Open
Cached
·
just now
87/100
SECURITY SCORE
Certificate Information
Subject
CN=www.craftcreationsbybetsy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 27, 2025
Valid Until
February 25, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
ED:D4:3C:F5:E8:B4:63:D6:77:B4:A6:79:14:56:F8:48:48:6A:93:E5:58:7F:E4:6D:5C:69:09:4F:64:E0:44:01
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
base-uri; object-src; report-uri; +3 more
base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'report-sample' 'nonce-wvmIcsUUTxqxL554uzLC4g' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
esvj.eu
222barber.site
www.29k.info
www.3bi.tech
fleet.876get.com
app.powergen.acuizen.com
electricistasrm.ads2lp.click
www.alcateiaprodutora.com.br
appneo.appshare.com.br
bau-tagebuch.de
demo.bau-tagebuch.de
www.belowmsrp.com
berruti.tech
admin.borne-candela.fr
www.bungardean.com
www.chi2create.com
d.cl8.io
app.bcash.co.in
sso.codeconecta.com
testcove.coveidentity.io
www.craftcreationsbybetsy.com
www.daringenglish.com
dchamnan.com
www.deintattoo.ch
www.desarrolloselectronicos.com
www.devonkissstudios.com
test.diveunderwaterworld.com
dottedtext.com
doutoracompanha.com.br
www.kupan.drilldown.online
jfpe.drtis.com.br
www.e-craft.io
www.einarvandevelde.com
auth.google.eitvplay.com.br
fieldtrackerapp.com
www.flame-addiction-summit.ca
gavinmcdonald.eu
app.giftenizer.com
goodjourneytaxiservice.com
kiosk.harba.co
helioso.com
fm.hotekan.com
mobile-test.ireport.ch
www.jeanie.dev
app.kenznow.com
kidarim.day
kodeink.com
laamannjohann.es
lennoxinvestments.nl
www.logicaljupiter.eu
lotushairandbeautysalon.co.uk
lucadilo.com
referral.qa.m00eks.org
finance.maestroswim.com
opx.maestroswim.com
www.maytavisraely.com
dashboard.testing.microwd.xyz
molemountainmint.com
www.mtinterlab.co
mttatvm.com
amp.mural365.com
sumesta.my.id
www.nobiliusadvisory.com
www.noelaubureau.fr
novabreezeair.com
npcpower.se
www.onlinemarketplacebd.com
fv.orientalfoods.ca
paejunior.online
www.pagcomanda.com.br
papitasmochileras.com
www.pixelartify.com
pixelpylon.com
timmi.pointer2.com
presskit.store
jifu.rakutentravelxchange.com
randmised.co.uk
ravenswoodbaptist.org
admin.rendin.co
www.rockyassist.com
roteaiguide.com
www.roteaiguide.com
test.rooms.rotes.haus
saleshubagency.com
soi5barber.site
stevenderoey.com
sthapatiq.com
suramed.co.za
quorumhealth-thankyou.synctalk.us
inst24.tallyfor.com
tawssil.tn
testmymind.net
theminthaircompany.co.nz
theoceankb.com
genre.quiz.thrive.uk.com
www.uptportal.com
manager.dev.urltv.tv
xenthroscan.com
projects.z2h.site
www.zau.cy
Other domains in certificate