Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.guroohabits.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 21, 2026
Valid Until
April 21, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EE:8D:6C:0A:C0:20:5B:DA:62:52:0A:87:F5:DD:FA:3D:9F:F6:C3:AE:66:BC:A3:9D:4F:12:6E:95:5F:84:3E:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
facetingdesigns.com
abracam.org
portail.arovoyages.com
door.bartweb.cz
www.bizvento.app
jumpydoll-app.brianliu.dev
www.bridgemaps.com
www.callejeritos.mx
admin.apps-staging.canadiancores.com
onlineservices.ch13-pr.com
charlesavocats.fr
baic.co.il
codingaimers.in
salonlider.com.ua
metrics.crisp.co.jp
cycuszki.online
www.designfulltime.com
app.e15.cz
www.eeocdeltacosettlement.com
internal.electriphant.io
clarkcountygazette.enotice.io
im.feli.page
www.gzg-testing.fsv-aptor.com
full-truck.com
iaps-test.futurescale.com
www.gammastream.com
gmorganiza.com.br
japa.goaiiq.com
comite-etica.congresoqroo.gob.mx
demo.app.golendica.com
www.guroohabits.com
www.historiasdeartes.com.ar
firebase.pr-sc-yard-management.gcp.homedepot.com
hora-ev.eu
huydinh.me
app.imoveisavenda.com
inlandempire.dev
iskincare.fr
joegilbert.design
iot.kakuzei.com
kellyradiestesia.com.br
www.krishcollections.store
lakshyaved.org
app.locallawyerapp.com
lucidpoint.software
luminucx.com
madeinwestgermany.com
maherfayad.com
takelist.mattreid.dev
parandum.mgrove.uk
vueplayground.mkss.net
www.mrsgreadingroom.com
admin.mvvacademy.in
www.eufaco.net.br
echecs.netpro.mg
scan.nova-c.dk
okcountycasa.org
app.omnicdp.com
bjerkasand.ordreplan.no
mobile.paragonlandscape.com
pascal-fajarharapan.site
config.pixelplaces.net
view.24fps.polarr.co
www.pravind.dev
www.prodevo.org
puzzzle.network
qnips.io
rachissystems.com
roomriders.com
connect-customer-ng-admin.rxoconnectint.rxo.com
sacredcleansingbylinda.ie
sadiag.com
admin.sakura688.com
sanchitburkule.dev
www.scruff.com
client.sessionbox.dev
skunksniper.com
spacepolux.com
cowboystrivia.sqwadhq.com
www.stacktechnologygroup.com
www.stefanprokop.dev
www.stoopidcartoons.com
app.sudonum.com
go.tessie.io
cv.theokoel.com
thepiratedev.com
www.thick.cx
tlmexp.com
www.tomkrepp.com
back-office.tour-guiding.com
tools.tryo.dev
tulsifinance.com
api-staging.useswyft.com
david.vavra.me
vbunkere.com
ventbudeng.com
voxelverse.io
service.eu.wow-dev.org
zigali.fr
zufnaru.com
Other domains in certificate