Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.carloscasallas.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
54:C7:2B:26:6C:F2:E0:34:6E:DB:11:0A:56:7C:1A:33:00:5E:BB:5D:33:80:FB:C8:C1:B1:5B:83:E0:19:86:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
hipona.pl
ib-mock-portal.academix.app
chally.albygone.it
biba-bop.fr
auth.bukytalk.com
auth.bunpun.com
develop.belfry.camino.solutions
www.carloscasallas.com
cipomo.it
www.claimsolution.com
meatandfish.clau.io
kppay.co.in
www.kishantractor.co.in
www.tracknview.co.in
alimentostradicionales.com.gt
coinsverse.ctksystem.com
beta.denzildoyle.me
www.eerielabs.app
evergrace.app
factorynew.io
offline.parcs.dev.flashparking.com
www.flyingvtours.com
global-ecosystems.org
soycliente-uat-miperfil.gnp.com.mx
hub.gocnary.com
goyalnikhil.me
business.grubox.in
www.headstrt.com
www.hecssonepat.com
auth.henryapp.io
hippona.org
homespleat.com
how-to-do-stuff.com
irctc-tatkal-magic-autofill-form.com
www.isohomecare.com
www.it-e.se
itecel.com
jspad.in
links.lifereminders.eu
www.lioriz.com
cost-calculator.lunarlabs.co.za
magson.no
www.mamepan.com
marsaline.in
meetrajpopat.com
dev-web.meraoffice.in
mixalo.it
mnrrealestate.in
www.mrkazemi.com
controlcenter.mrxdatalabs.com
app.naturepassport.org
www.nikoogardensestate.com
www.pedsurgalgorithms.com
dev.planflow.link
app.pmc.org
www.pneumaone.com
espace.qr-up.fr
app2.quicktype.io
realfitness.ie
oauth.rezi.io
robofen.com
driver.staging.safetyinminutes.ca
www.strategicplan.salem.edu
sappernetwork.com
www.saratogadata.com
dev.console.skyline.academy
sms-dev.socaltechbridge.org
accounts.marketplace.sohookd.com
chennai.sreemagaltravels.com
coimbatore.sreemagaltravels.com
dindigul.sreemagaltravels.com
erode.sreemagaltravels.com
kanyakumari.sreemagaltravels.com
karur.sreemagaltravels.com
krishnagiri.sreemagaltravels.com
nagapattinam.sreemagaltravels.com
namakkal.sreemagaltravels.com
ooty.sreemagaltravels.com
perambalur.sreemagaltravels.com
pondicherry.sreemagaltravels.com
pudukkottai.sreemagaltravels.com
ramanathapuram.sreemagaltravels.com
viluppuram.sreemagaltravels.com
steampunk.digital
www.steampunk.digital
cdnstatic.studio-mason.it
admin.talnurt.xyz
taniepodroze.com
tempbuttonus.com
tpe.me
www.upme.link
www.vagner.page
vahinxonlubricant.in
wakka.com.br
wellipill.com
get.weohealth.app
wirtshaus-freiburg.de
www.woyo.info
www.zagrostech.com.br
app.zawadi.africa
Other domains in certificate