Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.ddev.gr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:39:38:5D:BD:41:FA:9A:84:8D:D5:F5:68:B0:12:19:54:7E:ED:75:28:D6:7D:9D:50:4B:BD:DA:C3:BF:FB:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
flexteam.in
castofr-test.3dcloud.io
blender.agilitynerd.com
aianoelportfolio.xyz
algorixit.com
ntt.am.cx
www.astrologyfordays.com
attozoic.dev
docs.backslashlinux.com
tagin.beapnow.com
status.closedtoday.biloba.com
borderlandscaping.com
elcantaro.bracelit.es
it.caldera-studios.com
camm.dev
tarjetas.ceroone.com
sante.clau.io
www.digitaleconomy.co.kr
news.cignafinans.com.tr
dch.admin.convercus.io
craftmasters.creaive.ai
creambyul.com
crispycrab.co
www.ddev.gr
www.decasajuarez.com
manga.delagoandres.dev
dtmoney.rafaelborges.dev.br
www.devinpentecost.info
dirndl.be
www.dish-recipes.app
ds-innovation.dev
api.dev.dynamicloyalty.ai
portal.ezclo.net
link.fortmobile.com.br
pro.generationpiscine.com
inf.getblood.com
dev-admin.getevoapp.com
www.hidrogt.com
wedding.inin.vn
mrjulus.is-a.dev
www.admin.juniorhighgame.com
www.jurisopus.com
leadgameboard.co.uk
leaguealerts.live
www.lindastuhaug.no
api-staging.linkpadreview.com
many21ai.com
www.mavoffer.com
mcmachinemanufacturing.com
mecimo.jp
mettle-studio.co.uk
misheel.study
app.monogps.net
openapp.mylibribooks.com
liverpool-onsite.mymoons.mx
www.namvidhyamandir.com
nh-react-boilerplate.nata.dev
admin.newsrollapp.com
niftysoftsol.com
www.nthuawb.tw
www.ocjs.org
offpeaks.es
paytamasha.com
plotline-agency.com
sakutaro.poesy.run
www.proftware.com
www.pudding-table.com
api.purplemovies.com
ql-blog.co
quillavende.com
rania-kassab.com
earthlink-qa-ops.reachmobile.com
www.reckxl.com
reconectha.com
admin.resrvdmanager.com
rikexim.com
robert-roehlinger.de
rok-calculator.com
shrinathjikarmakandsansthan.com
app.simpo.ai
sophiaraw.com
sorvellielectric.com
observer.spicaengine.com
sundtfordig.nu
www.swapmeals.nl
www.talktovarun.com
admin.team369stake.org
www.fall-develop.telehearportal.com
berkeleygroup.time-lapse-systems.co.uk
tingkart.com
producer.tixologi.com
elisa.tojkurven.dk
app.trendingshipping.com
www.ultrafit.in
upharmony.com
ventilatorudlejning.dk
www.vighnahartaclinic.com
waterwell.info
my.websensum.com
zmacsolutions.in
Other domains in certificate