Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=foggyglassesnews.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:61:EC:6D:D4:DE:AD:12:33:86:6A:EA:17:CA:DD:0C:1F:F9:06:94:8D:5B:FB:D2:95:36:16:2F:5D:A9:61:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
golf.nanks.com
www.adityadroid.com
www.aimcomely.com
apolo.one
askclass.org
avwatcher.net
www.beramugloballog.com
blaze.boldfinance.in
www.bonsucessoseguros.com.br
kumo-cotorreo.busquenos.com
www.buzzhubs.co.uk
cankoc.me
smilemakers.cflock.in
www.cleverbuild.io
clinicadentalealbania.it
www.cloudxim.com
admin.deci-bel.com
www.deloput.com
www.demosdistributed.com
dgmads.net
app.diversion.dev
www.drgoof.com
easeyourlife.in
app.easie.in
mvt.app.aeghome.electroluxmobile.com
www.event.lu
app.ezeeqrcodes.com
app.feuerwehr-arbon.ch
client.cuisine.fikilifadly.com
uat-swabhimaan.finncub.com
finsne.ws
flowers.community
foggyglassesnews.com
testing.gatheround.dev
www.getitdoneit.com
www.gnanamanihospital.com
search-poc.goloti.com
cronos.gusof.com
gwl.it
link.hapabox.com
helpaddict.ru
card.hipposrl.com
app.ibexperts7on7.com
ikigaicareercounseling.in
intelihogar.com
www.interpretechinois.fr
auth.joindaisy.com
infolife.justin0u0.com
kaufmandevelopmentgroup.com
kenny-lomas.co.uk
www.kshitijsrv.com
kudosaqua.in
kwabigames.com
auth.loybase.com
www.markgolubev.com
mesquitewomensclinic.com
usa.metax-ims.com
link.meucardapiodigital.com.br
miamiappmachine.com
tmanual.mimamori-info.com
development.minubia.com
monkeytungsten.com
dev.notepals.net
dev.notvakt.com
api.pepperpin.com
angelhoney.piticommerce.com
www.postal.gift
pyxal.io
qad.mx
www.rexfielding.com
www.reycorenovables.com
www.ronaldkoh.com
connect-ng-carrier-tenders.rxoconnectperf.rxo.com
settrasas.com
sharonadairart.com
showkat.dev
admin.simplysocialmgt.com.au
sinapsys-sa.com
www.sintlambertusvrienden.be
www.sketsj.no
test.slidesup.com
catalog.soundsbutter.com
stalis-projekt.hr
staging.marker.stratosfy.io
www.strattonland.co.uk
suvarnanethralaya.com
tedcarey.com
comic.theorygenerator.com
communication.theorygenerator.com
clientportal.theowyesdavid.com
theskinsavvy.com
tmtaplicacion.es
tomalder.me
tracecms.com
iaaps.vidocto.com
southbeach-orders.waiterpro.com
rpn.woflydev.com
tenant.woob.com
zapclick.digital
www.zarea.site
Other domains in certificate