Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=weblaunch.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 27, 2025
Valid Until
December 26, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A9:19:47:17:0E:76:F5:DE:A5:97:A2:08:B2:17:8F:8F:E0:7E:B5:CE:EA:E9:33:C7:27:FD:31:00:5A:77:91:85
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ikriyo.com
03king.com
www.70kgless.com
advancepts.com
pr.angula.app
ubh.archilabs.ai
www.astropremlalit.in
tools.ava.glass
club.barmansbeerclub.co.uk
mturk01.bcause.app
www.bitsinmotion.de
app.blunded.com
brainztech.net
brianltang.com
www.buzzbee.com
ohms-law.at.calculatorhub.app
parallel-resistor.at.calculatorhub.app
berthoudweeklysurveyor.column.us
bargmann.com.de
www.kiismet.com.sg
login.credope.in
www.crystalpops.com
app.desideroo.it
dev.edim.app
www.editas-partyservice.de
webapp.enjoydev.com
equibaltic.com
app-stg.esploravino.com
dev-rosters.everettrowing.com
www.facialdoctors.com.br
fintrack.expert
givegrove.com
gothic.city
gsquareclothing.com
msi.hazling.com
www.headsup.hockey
www.hsd.capital
www.hygienecockpit.de
link.ifanow.com
bees.infinite-y.com
flux.infrag.org
dev.inkdrop.ai
www.interreader.com
jenniferfordsmith.com
www.jimdgeiser.com
admin.justforhearts.org
www.justinschneider.com
www.kidimo.app
kramer.tools
rfs.kriasoft.com
www.lemeai.com.br
www.lmkya.com
mailam.m1studio.co
www.markmathiasz.com
anims.memeandsticker.com
shop.meprakun.com
mina-asad.com
mmig.site
app.mondkapjesmelder.nl
www.nasiri.it
whenweb.nathanpollock.com
nationalrock.co.za
www.navygatio.com
www.nivendha.me
mizrachymarble-app.oz-tms.com
parsill.com
jersey-marinero.petit-bateau.es
referral.pollyn.app
pqueuer.com
www.prakashm.com
dvinum.promokore.com
purflies.com
pustakabunda.com
cafe.ranaq.com
www.rawwar.in
realtime.nu
richardson.co
www.robertupward.com
www.rxiapps.se
safinto.com
solariumnft.art
standoutwebdesigner.com
storyhiking.com
stuflog.net
bodacastilloflores.swanmoments.lat
starlynx-dev.team-tristar.com
tellimused.ee
mentora.themullanyfund.org
trackszone.in
portfolio.vaade.co
spotithing.veert00x.com
vio-dev.com
weblaunch.fr
weeklysnax.com
widget.wejugo.earth
planer.xdit.pl
test.yokoy.ai
oauth.your.md
portal.zerofence.com
solvia.zerog.es
Other domains in certificate