Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.piskunow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 03, 2025
Valid Until
February 01, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:16:FE:70:43:EB:1C:0C:94:18:A5:C7:F1:7E:84:F3:3E:56:BC:8F:AF:66:29:50:B4:45:66:2C:B8:B5:04:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
felbinger.cc
64shop.ge
legacy.marketing-insights.additive-apps.eu
www.agnesemarcelo.com.br
albrecht.eco
www.albrecht.eco
alomigo.com
auth.altotunchitoo.me
www.area.social
asska.org
ata.systems
fabricators.autosprink.com
b43.dev
baillies.co.za
courier-dev.batele.plus
auth.bluefox.ninja
bonsassociates.com
www.booktonmono.com
support.boxup.io
www.business-energy-calculator.tw
www.camify.app
www.carnitaselcompadre.com.mx
centeros.nl
www.samhealth.co.in
vip.personalitytest.co.kr
cgr.codesh.in
www.sakshyamaryal.com.np
watchstudio.com.tw
completodo.com
app.drayrates.ai
share.dsfootball.tech
dyswis.games
pwa.eboxx.app
teachers.econstruction.academy
faxapp.net
m.fiskal.app
fa4eat.florian-meinhart.com
www.florish.app
flutterdartembedded.online
game.futuremaker.app
auth.hkmud.com
kartturismo.com.br
lamafiatech.com
landtowerlimited.com
www.larkboard.com
leanweightapp.com
loungesprouts.com
lspcons.com
app.magictask.io
marcosdourado.com
lg-widget.mayamd.ai
www.mcghee.me
mindanaogoessolar.org
mo-webdev.com
mojifun.com
www.mxmarhitektura.hr
mytripguide.ai
naphthax.com
nathan-brigot.com
neosponsor.com
staging.nstwellbeingcoach.com
nymiiri.com
obrabox.app
open.one8.app
browser-extensions.pbbbl.com
www.piskunow.com
assetmix.portfolioview.co.za
myq.portfolioview.co.za
synergy.portfolioview.co.za
auth.prostatecanceratlas.org
protectorofbalance.com
appt.rapo.app
rasayanvidhya.com
www.rebberesponsa.app
rettcation.com
www.shinchina.in
shopdontdrown.com
slicex.ai
edirectory.snmitapps.org
somogrow.app
somonteknoloji.com
www.sssfmsindia.com
studiomi.co
sudshare.com
quick-bill.theappstack.in
thedoneapp.com
test.theeuwes-it.nl
timestones.app
www.trademydevice.co.uk
web-staging.trucksnb.eu
www.trygather.co
consument.urbancollect.app
usuimachinami.dev
www.validate.me
areyouin.vasilverdouw.nl
www.voetreflexzonetherapienicole.nl
wangmeijun.com
www.whyadvice.com
go.dev.wodscribe.com
live.woodviewacademy.com
Other domains in certificate