Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=home.qr-pay.club
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 11, 2025
Valid Until
February 09, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:14:F8:A5:4E:6A:9E:33:23:7E:1E:A7:ED:4C:CB:97:80:84:75:BA:04:7B:57:5D:14:55:73:C4:E7:EF:30:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
extensions.sq2c.com
adccommunity.com
www.allyoucanfeet.pics
b1.aporeldele.com
www.ascribner.com
svet-zdravia.bodyfix.io
www.calcmei.com.br
www.carboli.com
app.cetplote.com
www.changforklift.com
chavindismo.com
flexpert.co.il
dindigul.yazhdroptaxi.co.in
adnqr.co.kr
codeboy.jp
dl.myvip.appandus.com.my
tetronome.compiledvibes.co.za
coursengage.com
cryptocrats.xyz
www.darkeinu-library.org
www.dirrecctt.com
blog.dotfogtme.ltd
www.droppedspoon.net
imeclinicacidada.drtis.com.br
www.dynamu.co
auth.google.ecommflix.com.br
www.epaepa.com.br
app.eumplus.kr
europe-events.net
www.evoluciondigital.mx
fondieki.com
eclipsego.garafa.com
globalstarmhs.com
dev.hub.gocnary.com
www.grndfuo.io
www.heirloomharverstcmr.com
dlink.hermanhome.com
wall.hkpathwayca.info
admin.staging.auction.holmasto.fi
www.hotelsangams.com
namhoang1502.id.vn
www.jarheadstech.com
www.johnxhwang.com
joshuamanning.com
www.junjie-xu.me
www.kamp.red
qlgxtanphuoc.kasoft.vn
www.kaufiprorganics.com
kitbi.do
www.laconic.kr
www.leverhen.nu
app.lmenuplus.jp
www.lucasharford.com
lucasschmitt.fr
lucyisdreamingabout.me
maklerkollektiv.de
medpay.fyi
mfatnz.com
missythegod.org
mmcodelytics.co.za
fatture.mr-apps.com
phonepe.multibhashi.com
www.mvuramaven.com
www.mydaytracker.net
naveenakadaba.com
www.nijmegenquest.nl
admin.hol.bcf.or.id
orbitdaily.top
www.orbitdaily.top
ossdashboard.com
pets-are-everything.com
docs.pixley.app
sys.pochittoo.com
www.primepropertyconsultancy.com
www.profectura.com
www.project-iguana.com
mercedes.qfix.ai
home.qr-pay.club
invite.realpods.net
renatomilano.it
playminigolf.rocketjumpgames.com
www.rowcave.com
www.saiswagat.com
coffeemania.semantida.com
bukchon.seoul.kr
suminet.sistemasbelkys.com
sswebsites.pt
shopping.stable.codes
anmeldung.stnikolaus-wohlen.ch
swalfna.com
talkinggames.club
threshingfloorgroup.in
timezoneguru.com
policies.traxsmart.in
app-relacionamentos.trusom.com
www.userland.tech
verttice.co.uk
liguey.wetuk.sn
www.wordsandtea.com
player.app.zeffi.dev
Other domains in certificate