Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=janenightshade.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 17, 2025
Valid Until
March 17, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:4D:40:7E:3B:7C:13:FB:8F:AB:FA:D3:14:A7:5F:F3:D7:31:27:D9:02:58:46:3C:4B:F3:3A:8C:A8:30:25:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
instant.passbuy.com
promotion.aglive.com
connect.copagril.agr.br
sandbox.ahrina.com
www.ant-gravity.com
www.apfdesign.cz
arretadospastelaria.com.br
astridbang.dk
avnir06.fr
firebase.auth.dev.bethesomm.com
www.bluebrain-medtronic.com
qm.teambonus.bondvet.com
qr.claylabapp.com
www.comfortbusinesssolutions.in
elbekliniken.commulino.de
www.bills.contrall.ro
www.cubanitosmifavorito.com
auth.cydocs.cl
dapanalytics.cz
app.probowl.dasgym.com
dicediary.com
digiscore.in
digitalasset.help
flavus.dradh.com
www.ejapps.com
emrize.art
aire-park.equiem.mobi
evilriva.com
fifgrulesbot.com
demo.freshimmo.fr
vistorias.gestaotop.com.br
app.getbrunch.co
goldenpixelstudio.com
app.good-leader.com
pro.guideo.me
core.hedged.online
hennainternational.com
ibridgeminds.com
icom-uae.com
author.idlworkshop.com
infari.com
inovatifler.com
www.inusualsignage.com
iotals.eu
itivas.com
janenightshade.com
www.kbtechnosys.com
www.kidsown.com.au
app.knallah.com
www.loancalc.eu
www.longanespa.com
lowpricetravels.com
ludivineachouri.com
luniklo.com
marinkart.com
meter-meister.ch
balcao.meumenufavorito.com
cloud.mmi-electric.com
murosta.com
org1.stg.myfilehr.com
mfe.myroutes.click
mysection.ma
mywalleat.com
newcnewl.com
www.nicole-tsang.com
nimmapreetham.com
images.noticeable.cloud
www.odin.onl
www.ontune.in
opentoadrecords.com
orcamentospdf.com.br
ossacomplayoffgame.com
paulinecoulais-osteopathe.fr
peili.de
www.penslz.com
authentication.rap.ai
app.ridewithequo.com
cdn1.riwsoft.com
beta.romanceala2fik.com
donate.rotarydistrict7030.org
seelenlichtraum.de
septenarygematria.com
admin.sevendaze.sg
triplewhale.softserveclothing.com
www.somavamsha.com
souqtajer.com
office.spllity.com
starcointer.com
superhola.com.mx
www.syntoro.app
www.syntoro.ca
app.terveystalo.com
trainchess.ru
ng.trinitybags.store
www.u-trainer-fitness.net
staging.uaploads.com
fve.v-system.cz
www.vapster.com.co
waymotors.com.br
yogarunyam.com
Other domains in certificate