Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.cygdisenos.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 08, 2025
Valid Until
February 06, 2026
63 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:01:A0:FB:83:4A:A0:82:36:25:B4:4C:C9:DB:A7:F0:E2:3B:9F:B9:05:BA:46:F4:C4:B7:35:A8:18:9D:01:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
founderstruck.com
17digits.org
1stop-solutions.com
agendacinemadesenfants.com
animedia.me
marketprices.antoniogalan.es
www.aonecomfort.com.au
www.assistantchatpython.com
reports.avgust.com.co
bhif-tm.ly
impos.bitsytetech.com
blessingbox-ai.com
bogbanken.dk
ideamaker.bokeringo.com
add.busesforsale.com
bytesdeploy.com
caylerandsons.eu
caylerandsons.me
cborodescu.com
www.cborodescu.com
cemerlangitech.com
chamadofacil.com.br
cmfoodtest.clau.io
dev.clickhoroscope.com
servitztesthomepage.fritz.co.il
www.cygdisenos.com
doc-internal.dalek.rs
register.districtconference7030.com
www.dolphinmassagespa.in
old-blog.dsjin.co
r.eal.life
x7zz1x3el1hvd5e.easyapp.co
xisb986wyw4wm.easyapp.co
cep.edu.co
auth.google.vipnetplay.eitvcloud.com
app.eruditiocz.cz
expatvisaai.de
fabricadeequilibrio.com.br
demodrone.falcomatics.com
www.flexfit-europe.org
eiss.l.frequentvalues.com.au
portal.fullyfocusedlearning.com
fuxmidia.com
g0solutions.com
www.ggugitt.com
goteleprompter.com
happymodapk.shop
umpromo.harapekogames.com
www.harshraj.dev
share.hot-story.com
synergyxyz-intelligence.hypergro.ai
synergyxyz-neo.hypergro.ai
isomatric.com
appst.jetty.mx
www.landscapingandmoore.com
app.laut-und-sichtbar.com
links.lendpinoy.ph
www.mathus.fun
michellemade.com
portfolio.monexier.com
mrteerecovery.com
dashboard.netradar.com
neurolous.com
www.nouman.com
www.nucleon.jp
odmori.net
oggie.ai
onetrueapricot.com
acaorelevante.orbit-lab.ai
paineldeinsights.orbit-lab.ai
personalni-standard.cz
www.piedigital.africa
playshatranj.com
www.polca.pro
panacea-dev.procaryote.com
test.procurator.net
prokopteam.hr
pulibrilbogota.com
www.quizkpop.fun
ul.resourcelinked.com
rifou.me
rw78.de
www.saltriverroofing.com
schirona.ch
score136.com
simplehabits.io
auto-virtuell.simrace-control.ch
www.farmlife.stefanhinterhoelzl.at
www.swllearn.com
www.tamami-higuchi.com
throbberstudio.com
coinconv.tinytools.family
tradehubinvestment.org
trubary.com
dev.timesheet.unicornpowered.com
goindigo.visa2fly.com
pwa.volg.shop
wheepool.com
yep-dev.art
www.yuksel.law
Other domains in certificate