Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=code4change.thecodingspace.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 20, 2025
Valid Until
February 18, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:28:9E:50:B5:3C:6D:44:BE:0D:96:3A:0B:12:B5:2E:D6:17:49:6E:A5:CF:37:42:3B:4D:62:52:3C:CA:A1:E4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
facemark.com.br
aidiligence.pro
alghooreden.app
avalanchetechresources.com
birksgeothermal.co.uk
www.bookerence.com
www.buddy.education
p.bzk9x.top
www.calderonmena.online
calendarplus.site
demo.eyro.co.id
link.smartclip.co.il
www.waysoft.com.my
andy-y-carlos.com.py
links.petzzo.com.tw
concalabuasd.com
connect-rh.me
deineseite.online
derazee.site
diduc.it
crm.drajoanafaria.pt
e-gorent.com
easyapp.one
cxhub.ecosystem.co.uk
vmxalimentos.edsys.com.br
bokning.eken10.se
www.entreverdeph.com
www.esthiscan.com
auth.firmame.io
auth.fleetonroute.live
franks.website
www.futuretrashcan.com
gaelcfp.com
valora.gdagtekin.com
globalvertexsolutions.com
grupo-zion.com.pe
www.harmonicamundi.art
cameras.hcnw.co.za
www.hwalmoo.com
hydra-riddle.org
app.rufino.imb.br
www.insiteapp.co.uk
kostiantyn-alina.invito.link
www.jukumiru.net
ki-tho.be
app.kintos.mx
kirklandenterprises.org
ui.kognic.io
sg.liveqa.jp
lvl17.uk
scenekings.makebetter.co.za
mastercash.app
med-amine-ab.online
nfe-visualizer.mwms.com.br
nafas.design
nalazy.sk
health-demo.nexlab.tech
ninja388up.com
app.nuforce.pro
onnpilates.com
www.optibit.ai
www.opulencelodge.co.za
www.otaku.group
outlinevps.online
pensiuneamelania.ro
invoice.pro-solutions.net
purpuramedicolavoro.it
aldocinthia.rcinvita.com
relaxingreiki.co.uk
restauresse.com
ricoomuertovhill.com
www.sainisamaj.org
sup.saojose.pro
www.sonandomarathon.com
www.spaziouva.it
app.spctrmluv.com
studioarchitettociantia.it
studiofaraj.it
bodajosecarosyrocio.swanmoments.net
syncedskincare.com
waitlist.tableforge.club
tanesolutions.com
tarot-dreamer.com
www.tarot-dreamer.com
telemadehealthcare.com
www.thebestmagic.show
code4change.thecodingspace.com
topbid.xyz
trumptalkstoday.com
auth-firebase.mpc.tv.br
www.unitedint-uae.com
www.uwbiqtag.it
vlessvps.cloud
vypiszevidenceexekuci.cz
www.waymotors.com.br
welynk.xyz
link.weseechange.co.uk
wireguardvps.online
linkto.xigxag.co.uk
xoriium.xyz
Other domains in certificate