Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.toutpresdesoi.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 14, 2026
Valid Until
July 13, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
61:F3:35:08:60:90:78:04:BB:5E:C9:EB:A3:DF:07:54:5B:2F:F9:FB:20:A3:CE:9B:DE:10:CD:D7:C4:D2:A1:59
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
gnventures.pl
20220511.com
api.abocloud.io
www.altaspend.com
altaspend.tech
amapharma.fr
m.amarstock.com
aniqhilman.sg
www.atelia-patrimoine.com
search-it.belindawelte.de
pawnshop.bitnullcorp.com
www.bloombud.co
red2.btartisticyoga.com
okamotos.share.app-staging.c-rayon.com
cameroncanning.com
chavesasociados.com
www.cleanbox.co.il
www.co-partner.site
konzert.crime-cases.de
auth.dailyinvoice.xyz
segeln.datenwort.at
deceroaprogramador.com
denblauwentutter.be
lifegame.e-onlineservice.com
ebti.co.uk
www.esportstechnologiesaffiliates.com
excellentcanadainc.com
app.fighterodds.ai
footprintsdesignstudio.com
app-ester.forextb.com
infinite-scroll.gbrassey.com
app.getheadstrong.xyz
signup-stg.getsilt.com
calcula.girosv.com
www.glamslambraids.com
greatbritishwriteoff.co.uk
grosswearegross.club
halifaxlive.ca
www.henryado.com
hoftsoft.com
icarusdocs.com
illusio.show
indotech.ca
www.infyai.com
www.intelystate.ca
irajenya.com
www.iris-talk.com
app.jakipit.pl
janporeba.com
keeprstorage.joyridecity.bike
jsworldwebstudio.com
jumpwirefx.com
kingofladder.com
www.labarfetteria.it
ladybugandbee.jp
slides.limhenry.xyz
invite.locamos.com
deckdesigner.lowes.com
mayurmamtani.com
mellonnet.com
auth.mesveret.tr
nazaninhamed2018.com
portal.nerri.ca
nikudoushi-fukushima2.com
nivelito.com
book.okayswiss.ch
www.outoftheboxproductions.be
www.pianomitra.online
www.platzquartier.at
www.plavnas.lv
app.portao3.com.br
quattro.portfoliolink.co.za
www.prettybigmonster.com
admin.kim.qap.red
admin-panel-dev6.qlub.cloud
vegan-protein.raodix.com
www.reyaz.co.in
rhayes.ca
rktsim.com.br
verify.samidi.web.id
sdk.seja.best
app.staging.serviceo.me
shaunkirkwong.com
sheet.supply
stockholmsdodsbo.se
synaptiq.co
www.teamplayer.com.gt
www.techinject.io
teebrox.com
thinkcrazy.co
todd-familycc.org
www.toutpresdesoi.fr
app.tsudot.com
wator.it
kr.workspace.training
xeniverse.xyz
www.xpats.lk
sessions.yakoffice.app
yililee.tw
zxxy.co.uk
Other domains in certificate