Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.manuelgonzalezgarcia.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 17, 2025
Valid Until
January 15, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:95:BB:B4:A0:60:57:37:5F:56:F4:FA:83:8B:83:B4:89:01:B6:9A:BB:0B:EB:8B:22:0C:7A:DE:C7:9B:26:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
futurlang.com
10doors.com
pixiongames.12traits.com
www.abenojar.io
www.abindiepfanne.de
staging.anfragen.additive-apps.eu
aerobuddy.aero
aivideohunt.com
demo.akiverse.io
intranet.alightcreative.com
dearcareplus-check.almediaweb.jp
alyfstays.com
andlorelei.com
appplanets.com
aretequantativeresearch.in
www.ashleyhogarth.co.uk
www.automazionipassini.it
ayatdesignstudio.com
www.banyan.eco
www.barlink.co.uk
www.baskaran.me
biswanathsahoo.in
app.bliggit-sls.de
brexims.com
forge.caarya.work
www.cleversheet.org
a.lescon.com.tr
beta-io.cloudlabs.com.tr
www.composemusic.org
www.conceptaccounting.eu
idp.ctime.jp
dannyfoodtrading.com
app.dashlog.io
dasiwoorida.com
devesha.ca
dogfydiet.it
donnybrookcabin.com
ecoandsolution.com
endvaw.in
enzo-daumalle.fr
exoslab.co
filekit.app
fontsolar.com.br
franzandcarlawedding.co.za
givinglifecpr.com
heavymetal.gocad.de
nhom1it2000.id.vn
testwallah.indiandevelopers.org
joaquinsalazar.net
kaizenehealing.com
www.lyresoft.com
www.manuelgonzalezgarcia.com
dev.meiliiapp.com
bkt.mightyscape.in
www.mixem.app
moderncare.app
mueller-everling.de
www.myplc.app
mypureza.in
admin.netlogia.com
nomid.tech
omalley242.com
orangebloom.ca
aksic.org.in
akspg.org.in
s.pastorai.app
petdo.shop
petmilly.com
www.plnk.uk
pranaviyer.me
www.propertydeveloper.ai
reliablecare.uk
my.rentrex.de
app.roboflow.one
public.roboflow.one
www.ryanxu.net
saho.samaonline.in
app.scopesheet.com
www.sparklebeard.com
app.speisekammer-app.de
www.sportboard.app
app.sportscapital.io
www.stellarsyndicate.net
blog.stenograf.pl
online.talemake.app
www.jolanda.tielens-aarts.nl
tulukacastelar.turnosweb.app
tulukarosario.turnosweb.app
app.qa.ukufu.com
www.underthegunpoker.com
unipeople.app
quanly.vinorder.vn
admin.vivacy-academy.com
wijin-academy.fr
willowisp.ca
links.wonderpass.asia
heart.work.gd
worldhiringday.org
book.your.vet
zampona.org
Other domains in certificate