Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=test.maxrevenue.club
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:08:DE:E8:EC:53:AC:8C:90:31:7E:AB:AA:AC:D2:A7:9C:E7:27:9A:CE:2E:55:91:AC:DF:2C:6E:46:89:F1:E7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
foodrestos.de
2019.tedxriga.com
edtech.stg.91social.net
adminimo.com
appartnerz.com
app.athenaintel.io
aubercot.com
paimai.autobid.com
badmoonzrecords.com
www.banigrisson.com
barhelper.app
share.bighit.fans
admin.boltboxapp.com
lockdownbrawl.bombayplay.com
www.captarget-coach.com
carolinesrl.com
chepedu.com
cjdesignsindia.com
climaticwatch.com
www.linimasa.co.id
doc.cognitedata.com
bombo.com.tw
app.contigo.social
server.cribz.homes
crista.life
danielcburgess.com
www.danieldlongo.com
deportivospro.com
www.designpatternsgame.com
www.ecoretrading.com
cloud.ecosys.mv
ed-incentive.com
www.edubank.com.br
emily-c.com
data.entur.no
ericdetjen.com
estudiofuentestedesco.com
ezpresta.fr
farmball.xyz
bk.fbox.us
figueroamoises.com
www.financefornonfinancialmanagerstraining.ie
movies.flybooking.io
focalintelligence.com
a0gl.foodle.su
www.gable.photo
topup.gamewalletuat.com
www.genworx.ai
app.ice.ghsoft.co
www.glorious-shallow.com
goodsamimt.com
guayrestaurante.com.br
wa-suta.guru-pon.com
forrestfenn.hvnt.io
hydiagnostic.hydiac.com
tuvantuyensinh.cupoftea.id.vn
kenafinance.com
www.kttracker.app
learnwithbranch.com
gonher.lernit.app
rps.loadsure.net
loritolab.com
api.lynky.io
test.maxrevenue.club
milandepauw.com
milanrahmie.com
www.mozaka.org
neilcolleen.co.uk
www.partytapp.com
tmi.patrimoniu.ro
dev.pingrr.app
www.poolchief.com
auth.popvagas.com
jaggeweer.poweredbypunk.co.za
pradier.ch
dev.principle.dental
admin.projectstanley.com
propertyandgardens.co.uk
ibef.prosperai.tech
ramirodesign.com
www.rent-me.pro
www.robodylo.com
shirachan.jp
www.sipherhaus.com
solvin.ai
dashboard.sterilwize.com
www.sullave.com.co
www.suruchiindustries.com
approvals.talentics.app
tannercrites.com
www.telecareconnect.com.au
theory-r-straight.com
therealowner.in
www.thomeemartins.com
www.thrillseeker.info
vectorux.in
glz.vel.cc
www.vibery.gg
maps.productions.wondermapper.com
woojudealer.com
Other domains in certificate