Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.drzazgadomy.pl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4E:1A:01:EA:A2:BD:0C:BF:8A:7F:6E:33:15:35:7B:54:8B:2A:46:B7:83:E8:58:96:BE:45:07:1F:C0:AD:FB:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
getcranked.app
l.74workout.com
faturas.alume.com
hopelingerie.appshare.com.br
dev.ardovia.com
avainfo.net
bcompertore.com
www.benxautomotive.com
vaccins.bilo.ba
www.bobbysmile.org
www.boffinbee.com
ccv.brown.edu
bso-project.org
partner.bujia.io
erc.businessgpsllc.com
callsheet.work
www.canberrapaediatricdentistry.com.au
share.dev.churnme.app
www.consensusweb.app
reefos.coralgardeners.org
crlfe.ca
productos.cubor3.com
debuggin.co.uk
denkiworks.com
www.drzazgadomy.pl
www.ec-play.com
essenceofthequote.app
ethronsoft.com
play.evilapples.com
fiorerialeclematis.it
flexy.club
www.fmennen.de
grouporders.forgetfulsoulapps.com
form-factory.studio
freereward4u.com
popup.fukumo.tokyo
hexiconapp.com
cartera.humantalentsas.com
href.huwi.mx
iamranjan.com
teams.ibokin.net
rankersbseb.indiandevelopers.org
marketplace.infusionsoft.com
screening.integratedeyecarecollaborative.org
learnflow.itam.mx
gstin.jamku.app
jamm.ai
jasperdekorte.nl
joseestrada.dev
links.lucera.es
mainlind.com
www.app.matematykagryzie.pl
www.meetian.com
admin.muggybh.com
sdp.nsspuri.org
www.nstwellbeingcoach.co.uk
portal.nucocred.com
pre.display.order.place
outerlimits.zone
www.personalabs.ai
www.play.cafe
playsquordle.com
flappy-retriever.playtogether.site
preview.pmmskills.com
www.posmit.app
staging.admin.panel.quench.mobi
app.rateraide.com
www.readaloudforme.com
rijksclose.co.za
romanboxing.co.uk
roomwith.jp
rrurgentcare.com
rustcursus.nl
www.seemflow.com
photonics-timeline.sibemol.dev
www.sidescrawl.com
slamstats.com
www.sportfaralimite.ro
stankomdimnjaci.com
teatopon.com
www.thetaxraven.net
openv3.tidalforce.org
titusebbecke.com
www.touch-less.dev
app.tourist-harz.de
transaida.com
twinepidemic.org
magic.uplyfe.io
us.audit.uveye.app
www.wadokarateindia.org
stage.app.watermelon.co
www.wdg.me
we6clean.com
www.webdev-boutique.com
www.whizzyle.com
www.yaki.app
www.yam.contact
yujia-wang.com
mayfaggion.zeero.tech
zwroty.zolta.pl
Other domains in certificate