Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.oversfit.site
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 08, 2026
Valid Until
April 08, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:D8:58:C8:13:0C:7A:F8:D6:BE:87:D3:0F:24:B0:64:16:52:17:AC:14:38:CF:85:89:69:56:D4:81:B4:C0:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jakehffn.com
www.100-pics.com
akhnfruits.com
all-city.app
alpha-biochemistry.com
www.annold.com
apolox.com.co
testautomationu.applitools.com
www.authentication-srilanka.com
statute.bdo-advies.nl
ninja-kyc.uat.beaufort.io
bellissimagelateria.com
test.tickets.bharat.id
bimbingankoding.com
bizzum.com.br
pong.bti360-apps.com
dev.tanks.c-everett.net
tanks.c-everett.net
caleap-edu.com
ceromulta.com
www.cikitsainternational.com
admin.civitime.com
admin.craftshop.ug
www.darwinacademymirza.com
www.deeplearnjs.org
dfwpythons.com
sib7.dicoding.com
dielsac.com
digitallighthouse.ca
digitalollie.com
dmvairducts.com
donadika.com.br
doverra.pro
www.drumlessonssheffield.com
durrahsystem.tech
dynamopro.co
e-trades.world
eccocausa.com
eliteraceaway.com
404.short.enkeldigital.com
entendereljuego.com
filltemp.com
admin.gajiku.app
local.bi.garoma.de
geminiweekly.com
geriatradurango.com
pay.sandbox.wpay.gr4vy.app
gruporgi.com.br
cumin-beryl.harecord-dev.com
www.hygieia.app
www.ifikratia.com
dashboard.inhouseorders.io
islandpinoy.com
joincrossd.com
www.kingflexxa.com
koalaneeds.com
kynio.es
lamed.best
www.lawidi.com
install.likelava.io
likelava.io
mazerax.com
staging.menuhub.app
mewo.club
www.msgreekteacher.com
muggle.app
www.mumbairoots.com
mxmarhitektura.hr
nelrodriguez.com.ar
nerva.systems
app.nimbo-x.com
whatsapp.nossaseguros.com.br
nyc-japan.com
oddballcyber.com
login.ordly.se
www.orevalbrands.com
www.oversfit.site
www.papermill.ai
stage.powertheapp.com
ar-casa-do-pobo.ruralhackers.com
www.segfaultstudios.com
dashboard.staging.sigmine.io
www.spendingskills.com
editor.sprites.gg
www.stairbuilder.app
studentkonnect.com
beta.tappti.me
app.thatdogmachine.com
thebestpump.com
timesync.io
dashboard.trustmytravel.com
www.vanago.dev
lekha.vatsan.in
www.vidhairecycling.in
washappdetailing.com
wesal.online
wheredothey.dance
withvak.com
manage.yogamovesus.org
www.zach.se
Other domains in certificate