Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.my-car-service.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 29, 2025
Valid Until
December 28, 2025
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:44:8C:40:38:47:8B:57:C7:0A:03:C4:3F:5E:A4:14:85:33:75:43:A7:C7:62:12:DF:E6:40:4C:F3:0C:1C:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
financekit.app
brandis.91social.com
aarmando.com
act-map.com
www.aevlabs.com
www.aktmodell.rocks
alitoghani.com
www.aloksi.hu
antonioannamele.com
tanamao.app.br
asesoriaalemansanchez.com
roterabenvilsbiburg.deeplinks.bfansports.com
www.bfer.app
opensee.bien.ltd
klanerne.blivnaturligvis.dk
testaccountwikimuseoit.bmarken.com
bobcatbaja.com
www.bobispix.net
docs.bookingflow.app
brandoncb.com
chat.buiviin.com
cashsule.app
www.cghomes.co.uk
chat-bot.support
www.christianchandra.com
w.chromium.org
dev.cnne-test.cnn.com
cocode.fr
smile-linkhealthcare.com.my
91ilife.com.tw
old.condedynamics.com
app.construconnect.com.br
dev.culligan.one
cybexai.ca
www.depara.app
dippola.com
cleaning.easybus.app
eltarot.app
btapp.ensobit.de
app.esace.tech
degustation.etoh.app
examefederativo.pt
invite.genskill.com
gpt.staging.geoanalytics.group
test.lite.getshoutout.com
gomarkets.dev
igormartis.com
xxz6c.podc.incentable.com
miyagisushi.infinitifood.com.br
karakaya.co
lekhoi.com.au
lexcialservices.in
stg.management.litpla.com
gnfoods-admin.m1studio.co
www.majtbee.se
www.mhsystem.co.jp
auth.mkrat.am
app.modeldinners.com
link.muva.app
www.my-car-service.org
www.neovillepilates.com.br
www.noordelijkehorizon.nl
portal.oryxmovementsolutions.com
auth.platform.oxos.com
pagefule.com
pcs.ai
dev.periscolaire-chenoise-cucharmoy.fr
app.pickleballwithfriends.com
pkycurrency.com
beta.pooldatafeed.com
praxis-am-laegern.ch
edg.prima.golf
profjosecarlosalvim.com.br
qdmtechnology.com
raidbro.com
undivided-identities.rereeti.org
www.runwayspot.com
www.sailingbohemia.com
sanffer.com.br
www.saprayworld.com
www.setfoundation.ca
app.shipwithmilli.com
staff.dev7.skool.sg
www.smartps.us
www.solarplus.pro
solvethewall.com
soully.co
subbonline.com
sullave.com.co
parlourmax.suwavy.com
app.templyfy.com
www.thearchontariki.com
tools.themill.church
thevideoclock.com
www.tri-notes.com
api.trick.surf
www.umosys.com
auth.yovstudio.com
www.yuunwateralarms.com
mdcamp2020.zinglio.com
Other domains in certificate