Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=atelierambre.be
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:84:B7:29:87:87:12:1C:33:9F:98:CF:AE:91:33:A9:61:44:00:76:87:5E:C1:6A:9B:D6:D9:60:A6:10:6D:B4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
indvstry.app
assessment.4digit.com
aconcagua.finance
jtdavisins.aghedgedesk.com
olfe.aimcomely.com
www.artsbyjp.com
atelierambre.be
links.berlinhistory.app
admin.bilginapp.com
boology.com.au
www.boxylink.com
ca-rollcall.com
www.cablecraig.co.uk
app.coostura.com.br
www.cotxesnets.es
www.criticalbas.com
deltaprompt.ai
invest.diakiv.com
www.digitalereis.be
atalhos.enzodias.com.br
evelope.app
filleruputah.com
findlostcellphone.com
www.fitifyworkouts.com
fivesix.app
www.friabile.com
web.friendtab.app
links-ceuta.galgo.tv
www.getsimpledirect.com
www.gochain.foundation
habitcheck.com
www.halfcourt.app
www.hdocto.com
devdoctor13579.healcard.com
hushhushhomes.com
app-sandbox.infiniteobjects.com
app.iplanta.com.br
dd.isuzu-tis.com
javimogan.com
www.jazzyafterhours.jp
jesusfdez.es
www.jhnnyk.com
www.jointownhall.com
chatbubble-dev.kindly.ai
komfortnyodvoz.sk
limpiezabrillanet.com
lisme.dk
dashboard.llamalink.ca
go.lochbox.app
mantratechnologyinstitute.com
maxidecesare.com.ar
mealmachine.app
www.mensafutura.com
mice.software
cms-beta.mixablestudio.com
www.nesphysiotherapy.org
capodichino-asset.nextome.net
nifusion.dev
me.nikx.co
noah.plus
www.okeyauth.com
www.openteam.io
www.order-lens.com
morse-it.pacolabs.com
paroquiadesaovictor.pt
admin.cwbhonda.pecas2b.com.br
perfai.ai
www.plamivaskowedding.com
plantpoints.app
plusabana.app
pr-office.jp
predguardapp.com
pulsodemocratico.com.mx
fitness360.qallta.com
empleo.revoolt.me
stinsights.safetec.com.br
izakaya.sakenote.com
sasanakreasi.com
scamcheck.app
tapi.scivone-api.com
ediflaguabinera-porteria.segurdiez.com
assets.set.live
www.shikoinu.de
shopsnearme.app
shoudian.hk
56thworkshop.skkudramaclub.kr
sociary.app
dev-firebase-hub.squidit.com.br
talachaapp.com
joinus.taporty.it
phonetech.techs.se
www.techs.se
theinvitation.is
qrs.tots.agency
www.trashtracker.app
help.trbu.app
vibecook.app
www.wasdlabs.com
web2app.app
goto.whynot.com
Other domains in certificate