Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=go.ddcon.cl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:C5:07:32:8C:AA:70:E4:7A:44:AA:9C:6C:26:4E:3C:50:75:9C:78:14:4C:6C:68:67:33:D9:FC:EC:2C:C5:FC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
harmonode.com
www.altamarcm.com
andadasi.com
anemos.app
www.austindomer.dev
www.bizcaresolution.com
www.bthr.app
report.climote.bycopilot.com
carolsperid.com
box.cdljaraguadosul.com.br
links.christine-ting.com
www.codedispenser.com
seyyarfilmci.com.tr
dailyelvis.com
dately.net
www.davanna.ca
go.ddcon.cl
www.deepdiveai.ca
dementx.com
departuremodeon.com
diegodiazgt.com
cs.doscontrauno.com
www.dotherprice.com
www.dqtact.net
easternsconnect.com
admin.epi-help.com
findmyreward.com
link.flexfitnessapp.com
www.flowrishgames.com
foodtrucktracker.org
week.forter.com
foxygo.at
demo.franshiromedia.com
access.fsfleetwms.com
fukuwa.fr
cv.fwd.wiki
www.garygearguy.com
barcode.gdagtekin.com
dl-dev.getfursure.com
app.getstudyflow.com
giftoffeedback.com
ginavillarreal.com
glauciagregoryadvogada.com
book-in.groupe-bel.com
www.hashima.xyz
hendrysetiadi.com
fringe.b.hotekan.com
iksandilojaya.com
ingeniumedu.com
rimrepair.instantcoatings.ca
www.intsoftgames.com
spielplatzadmin.itkat.de
jobo.tv
indus-sdk.joinsherpa.io
kxc.io
www.lar.city
leapflog.io
app.letsconnect.at
liquidgov.com
base64.marcrufeis.de
maukawebmedia.com
magpie.moonfox.io
links.nagpurtrends.com
nebul.art
beta.nia.nc
app.ohiocitizens.org
oriunda.com.br
www.perlmanmarket.com
applefood.piticommerce.com
www.pokemonplanner.com
quickdisbursed.com
rajifarm.com
www.refractionpoint.com
robertburkefilms.com
guitartrainer.robotlions.com
www.russalarya.com
ruvixlabs.com
go.s7designs.com
www.schernetzki.com
scientiaicons.com
shirahenteleff.com
skillsdevh.com
smartpoliticalsurvey.in
sophia-chen.com
stonerichinventives.com
storydna.app
app.superflowhq.com
ahora.surwww.com
caminos.surwww.com
www.suttonsoft.com
suzannemcgoey.org
technicapital.com
www.testrs.dev
thecodo.com
wandervibe.net
webmodell.no
link-test.wifiesta.com
www.2038.wtf
www.yocalab.com
zergpresent.ru
Other domains in certificate