Open
Cached
·
just now
81/100
SECURITY SCORE
Certificate Information
Subject
CN=marko.saramandic.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 30, 2025
Valid Until
February 28, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:69:E3:4D:3A:74:F9:0C:45:13:18:95:FB:8F:B0:C1:69:C9:FE:60:79:2A:E3:7A:99:E3:4E:A5:BF:CA:A7:7D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Weak
upgrade-insecure-requests
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fixclaims.com
0xgn.com
www.29seconds.app
demo.africase.co
www.amayakruti.com
mtl-trajet.anagraph.io
dev.annold.com
stg-app.any-tag.tech
atayhd.com
aureusventures.com
beanstamps.nl
brougham-ventures.com
uat-mvp2.call-levels.com
www.cgraffeo.com
exams.rrbk.clevereducate.de
www.cmisolutions.org
www.infocall.co.il
daabreeducationconsult.com
articlesubmission.darboux.live
devjob.app
donwewege.com
go.dparrish.com
dreamerdot.com
dusterspecialist.com
econotify.ca
www.eriereadingtutor.com
exigohealth.com
codeauthority.diamond.fastsigns.com
www.feltax.xyz
floursakk.com
encouragement.fndrsng.com
www.fooish.com
formone.dk
futrwmn.com
gloriahe.com
gobusinessinc.com
revapp.gordonjl.com
gsnresearch.com
gudindia.in
hq.harlemnext.com
haydencrites.com
henrychristianiportfolio.com
static-dev.ikuzaki.jp
sandbox.web-test.insent.ai
intreble.com
is4ict.com
jaidenpearce.com
jesuspalominoes.com
app.jetty.mx
www.joinmountain.com
jokra.si
karanja.xyz
pregcalc.keiomed.com
kelimele.com
kibrisorder.com
laplaceapps.com
lyftcap.xyz
testing.macademy.in
mangaentry.com
ena.marksteve.com
maruti.services
www.mahapanchayath.mediaonetv.in
dashboard.mevron.com
schulen.mirroco.ch
returns.mprocesses.com
my-shelfy.com
nandenjin.com
natmegy.com
www.naveenr.com
www.navoffroad.com
newtem.me
omasoftware.com
ooshtech.com
partners-staging.ordelo.io
packprojects.in
paradigmeps.com
peoplenergyconsulting.com
planner.express
ramendrakumar.in
ranchotenango.com
rayganancial.com
www.regensburg-weinfest.de
www.rmeip.com
marko.saramandic.com
simonesanfilippo.online
ragnova.smartbvb.in
stagenorth.net
portal.teleport.asia
thegoldenangelfilms.com
theyellowmonkey-skyperfectv.com
tiagobarreiros.com
tribalflux.com
viabig.com
www.wellchemtech.com
www.westernhumanities.org
admin.youtext.ai
zenonanon.com
www.zohalibas.com
zohalibas.com
www.zyadashop.app
Other domains in certificate