Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=enneagramexplorer.me
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:0B:79:B3:67:B4:46:01:A4:A5:E7:12:55:C2:C6:C9:64:DC:F3:19:87:6D:27:AC:85:EA:EF:0B:2A:F7:F4:B2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
id.octaos.com
pay.adaptivemedia.tech
aduanasanitaria.com
aia-taxi.net
aitter-twigene.me
kundenbindung.apoly.de
lizlingerie.appshare.com.br
arfis.lt
membership.atomica.co.jp
startups.atyum.com
l.avec.fr
azzatravel.com
pwa.baseph.com
www.bayudewanto.com
reference2.bouze.art
oolab.c-oonet.com
dev.coba-immo.ma
eng.goautomate.com.my
dev-app.commandeer.rocks
www.comojuegoaprendo.uy
www.conectoenergia.com
otc.ctrise.org
preview.cykel.ai
test.blog.daudr.me
app.lets.dev.br
my-q1.dpduk.dev
enneagramexplorer.me
familyfresh.app
test.admin.portal.farmote.com
bf.fbox.us
www.fintech.do
collecteiban.gan.fr
geminandido.com.br
gender-toolkit.kr
www.graphicdisplays.in
auth.guitarshredders.online
authdev.gymbook.in
haikunote.jp
harapanfajargemilang.com
www.horseriding.app
hossein-zaaferani.ir
iimono-search.com
www.incheondetective.xyz
www.joinopenwave.xyz
blog.kakow.info
app.kiplano.de
km2025.pl
kvadrant-invest.ru
dashboard.dev.lecto.ai
lextax.com.br
blog.lfabbro.com
www.localice.io
loora.app
lsattorneys.net
www.makern.io
www.manncorporation.in
nowplaying.platform.mdstrm.com
www.medclar.ro
lab.play.medeintegra.app
rau.mischok.de
app.natimate.com
www.neuroplay.fi
staging.nid-de-poule.fr
www.obras-suministros.com
www.oliviawhale.com
page.ontic.ai
www.plutonium.id
acc.procedura.nl
purim.app
reservadoapp.com
www.rewhite-climbing.com
www.sask2suds.com
beta.sayform.com
ppdb.mtsromuta.sch.id
www.selfash.com
www.semi-katsu.info
theneuronclinic.sevaro.com
sheradynhomes.co.za
www.logistica.siapco.com.mx
signupclipboard.com
next.simplassur.app
link-dev.smile-direct.com
rc.soundsurfer.io
www.splusgroup.net
vanderbilt-dev.projects.sprint-in.com
ocdsearch.swizzmagik.com
code.tammosito.com
sangenaro.tcontur.com
textileworldkarur.com
super-admin.thebattingclub.com
www.tonycode.dev
www.tryambh.com
dashboard-staging.tryhabitual.com
www.ubicalculator.com
www.uky.ooo
www.vidvath.in
blog.voicetyping.xyz
partner.washfun.fun
yupay.info
www.zoerner-zahn.at
Other domains in certificate