Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.worldsapiens.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:4A:48:DE:41:94:39:DB:1C:2F:0E:26:59:0A:06:97:B3:85:CB:76:AD:AC:1E:33:C1:97:6A:43:51:60:5D:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
its-infinite.com
stillfront.12traits.com
www.7starductcleaning.com
testing.accessiway.com
app.agendamaisodonto.com.br
customer.altforce.com.br
alwaystired.xyz
amitgunjan.com
www.analisahill.com
nudges.navi.apxor.com
www.aracolor.cz
auraclinics.in
svgluneburg.deeplinks.bfansports.com
wwkvolleysherrsching.deeplinks.bfansports.com
www.bravoluis.com
brookemorosca.com
admin.brookesnow.com
aalam.chennaicyclists.com
climbingcommunity.co.uk
h-inno.co.kr
dashboard.coachviva.com
www.codeletic.com
www.hojadevida.com.uy
www.concretepours.com
dev.console.cradleresident.com.mx
static.cross-social.com
www.dashboard.cryptoadvisor.ai
whatsapp-actions.cxipl.com
datamatchingworks.com
www.daviddmliu.com
www.deveh.ca
www.diegomarmol.com
pfg.dominos.qa
www.dragzambrano.com
dusksomewhere.com
www.dustoffreset.com
links-dev.earthcubs.com
eatmydust.info
edesm.com
www.uc-bcf.edu.ph
www.elizabethgordon.com.au
app.ellaverbs.com
www.entrusy.com
escueladeterapeutaschile.cl
fanverz.com
dev.dashboard.farmerunite.com
gife50.it
www.gordonfamilydaycare.com.au
www.helloticksy.com
plan-staging.heob-ip.de
staging.hub.hoxbycollective.com
portal.hwdevelopment.ca
evaluer.hyundaimagog.com
www.iamhernan.com
hust-cv-vu-thuong-dat-20215031.id.vn
www.imperiosomcarapicuiba.com.br
risk.in-compliance.ch
bubblepairs.apps.in.rs
corporate.incc.com.au
kbit.fi
www.keralamatrimonysecondmarriage.com
kyse.link
www.manuela-bellydance.ch
www.mattymcfatty.com
wooly-mammoth.michaelandersondev.au
miharukun.jp
www.mileage.autos
www.museostoricoroccamonfina.com
peakmoments.co.uk
pebblelist.com
admin.plaiuri.ro
plusbo.at
books.qnape.com
www.quebrandoabanca.com.br
raftengine.com
stg.yjs-album.re2fe.com
www.realestaid.net
universe.staging.roboflow.com
www.sam-fraser.ca
www.shorinryu.co.nz
votorantim.sigaonline.com.br
sml.pw
soehren.com
l.spro.dev
steinel-it.de
app.sweetearth.mx
tech9studio.com
www.tfhresources.org
followme-dev.thai.run
link.ticketveiling.dev
admin.traveltogether.app
www.treeidentifier.app
qa.policies.vezham.com
vr-estate.dk
www.we-build.city
www.worldsapiens.com
portal-staging.xpersity.co
practice.yonayona.biz
lp.yondemy.com
www.zirve-international.com
Other domains in certificate