Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.draperfc.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 25, 2025
Valid Until
March 25, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
87:E9:95:9D:81:DE:73:AB:3E:86:0F:56:FC:B7:82:04:31:ED:BF:6A:93:61:16:1F:05:A5:94:94:34:09:55:12
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
f.com.my
24chips.com
pokedex.aashitadesai.me
adrianvico.com
dev-admin.ailumia.com
eval.algotour.app
aluvw.com
bangalore.anbudroptaxi.com
www.andreealipan.com
unicorn.apricote.co
awmeducationservices.com.au
admin.babyganoush.app
barbershopmayfair.com
baters-calcutta.com
bauunternehmen-spille.de
bitcrumbs.ca
bldkorea.com
britstarmobile.com
bukvaed.com
docs.calmexperts.com
canine-health-institute.com
www.carefularoundtheeyes.com
chatflix.nl
cleansane.com
freeme.cloudframework.app
app.colandcol.com
link.sanskrida.com.ua
davidtheliu.com
delusciousfruits.com
www.domicilioscanaveral.com
www.draperfc.com
navigos.eisqr.com
admin.engineersinsight.co.uk
pitt.etraderex.com
idf.femiglobal.com
wsh.fiopl.com
webapp.flixjini.com
fullscreen.page
magazine.furuginme.com
hallpassplus.com
www.hank.green
virtualassist.healthgauge.com
auth.hrfox.net
powerboxing2.impactwrap.com
url.inbodyhome.tw
swan-hub-test2.ingogodev.net
acceptance-de-aginvoice.input4you.be
lenders.demo.invoicenxt.com
www.kaveritaidot.fi
king-code.online
landing.koenenenco.nl
laurent.soy
lawindz.com
linkpetal.com
linzacatalyst.io
www.liorkoren.com
app.loanshub.com.au
www.maddiemouse.com
mangucode.com
maxbet338.online
portal.medcury.health
stageapp.meny.dk
reg-app.minna-no-ginko.com
www.mymoons.cl
www.nlocate.org
ntanarestaurante.com
o-o7.com
sushihouse.pedidodomicilio.es
console.pay.phan-tec.com
schematching.pochittoo.com
podgaiskaya.com
prestigeloungepa.com
procomps.gg
project-walden.com
www.protosimulator.com
puntourcana.com
rappisuper.com
blog.researchdev.xyz
connect-ng-analytics.rxoconnectdemo.rxo.com
sawquality.com
sherawaali.com
app.siju.it
staging.safracontrol.souagrosolucoes.com.br
ufc.sphure.app
www.stambenagradnjavojo.rs
fabric-edge-docs.techaroha.com
link.thetanarena.com
www.resume.tonytongvideo.com
tpzimmerman.com
dev-vip.trackdmusic.com
app.twipri.com
verhoefconsultancy.com
app.vidyalai.com
www.waiterji.com
app.wakeupwarrior.com
federation.wfrs.rest
www.workona.com
www.yogatantraas.com
zairaperina.com
zebra.chat
Other domains in certificate