Open
Cached
·
2h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sparkle-electrical.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:A7:83:70:44:88:45:62:5D:C4:BD:9A:85:7A:34:3C:BF:28:69:6C:7B:09:D1:44:62:56:FD:C4:1D:35:F3:8C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
freshfox.at
aalaaalam.com
www.acicalcaldas.org
password.adonys.me
www.agro-impulso.com
autoskola1.com
www.avplumbingandgas.com
azitattoobeauty.com
bayareahalalfood.us
www.bengaldatingapp.com
admin-staging.bilditon.com
puzzles.blop.dev
www.bn-institute.com
cafhey.fr
www.cargo-login.com
casalohr.com
cathyparada.com
yougisya.cgig.jp
www.cherkashinart.com
cirentals.ca
clef-innov.clef-innov.com
unified.bikers.co.ke
kitchen.sushisinzo.co.kr
coinbible.gg
portal.ayub.com.np
cookto.online
danieldevapp.com
www.dimonb.com
doicey.com
www.dragencies.com
earthalien.io
xa7vmdmaoldf2g.easyapp.co
stage-management.eecertification.com
emanuelebruno.com
leaks.erlik.si
app-test.exabel.com
jianghui.feifeier.com
www.finch-project.eu
pristenit.flairtechno.com
www.fullstackrohit.com
fusiontechdev.com
www.e-exam.gostartdriving.com
grabbingasnack.com
www.hasinfratech.com
www.help-me.io
hiltonyapimarket.com
hiveoffs.com
howellcareindustries.com
user.hyperapps.in
www.ibdk.org
vagustelecommunications.ind.in
jdcinfotech.com
jekstarenergy.com
www.jekstarenergy.com
jpcreekmore.com
demo-root.juggle.jp
www.kara-elliott.me
ktofive.com
deeplinkgplay.labtest1.com
leecocking.com
dramas.megogo.ai
mfinn.de
telegramstickers.morellapps.com
mutf.club
www.mylittlevirtualfriend.com
admin.nanci.app
avax.nmarket.pro
bmscat.nocode-flex.com
novaprog.com
obaidnadeem.com
api.octo.app
www.olewinacademy.com
donate.infantindia.org.in
www.prizr.co.uk
prodigypadel.com
madurai.rainbowsdroptaxi.com
tiruvallur.rainbowsdroptaxi.com
rhymebuddy.com
www.rinseyaron.com
apps.balady.gov.saeservices.link
www.shredded.io
sparkle-electrical.com
oauth.stableton.com
swantechlabs.com
tacogato.app
www.theclosetcompany.net
phoenixentertainment.thediners.in
tunji.me
app-prod.unilytics.ai
coc.vallrsol.com
www.veriphone.io
app.viapj.com.br
vibezoneesports.in
www.vincenzonobile.com
re.vtechda.com
app.waigo.eu
www.wave-app.ca
www.wizy.vn
api.wrangle.us
mohamedekt.yanalcom.com
Other domains in certificate