Open
Cached
·
2h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dad-jokes.defrost.cafe
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 29, 2025
Valid Until
December 28, 2025
35 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:5A:E1:7B:B3:1F:6A:86:F8:7E:2C:16:43:9F:99:BB:94:6C:6A:58:3F:81:E7:95:E6:72:04:BB:BC:2C:3E:D1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jakesinson.com
www.22d.tech
www.adilson.sh
agama-consulting.com
www.alahnomi.com
almirajschoolofamazingadventurers.com
alqallafali.com
www.amigosprints.com
andhw.com
anthonykhouryweb.com
anvworks.com
artittattoo.com
asismec.com
www.atiyax.com
www.awqat.app
www.axiomatec.de
barberosadomicilio.com
bbsecure.co
beaute.sa
park.bilinear.io
www.birdsbagels.com
bk-studio.jp
mathonline.bonbongame.com
email.boredants.com
www.bricksandmint.com
firebase.brock.pw
www.buyersupplier.co.uk
cacheta.club
cakhyatirajpopat.com
peacemakers.cancaonovachor.com
portal.cedarsolar.com
www.citadel.tools
affiliates.codebase.mx
www.codehindi.com
connordupuis.com
practice.cotreat.com.au
app.crewdle.com
csfrequency.com
cypherpunkstudio.com
dad-jokes.defrost.cafe
www.digitalpulsetechnologies.com
app.directamp.com
q2-my.dpdlocal.co.uk
opentheater.dualsoft.eu
dyckster.com
europeconsults.com
www.everyours.de
www.evidencedaocrypto.com
evmaxcharge.com
www.fehrest.org
fitapp.lu
fmoving.com
app.goldpakfreightservices.com
grapevine.travel
www.homestrings.com
imaginativei.com
yourhome.immediateapps.co.uk
www.interestcharge.com.au
liveapac.onsite.invue-live.com
ironwaycapital.com
jibcode.ai
www.johfarrell.com
pmdev.kaizenams.com
app.staging.kinora.com.au
www.calendar.labellecom.fr
launchintovr.com
www.legaljelly.com
admin.lesgow.com
stage.limitlessminds.com
maguro-uokane.com
markdownresume.app
control-panel.masteryacademy.uk
www.mcwatts.tech
manteigadaterra.nubbar.com.br
cursuri.oammr-timis.ro
app.oilworx.com
www.ovb.events
ebp.percihealth.com
typi.promirage.com
pushchuk.dev
ui.qubithome.tech
dev.rolo.family
rootstone.jp
ryanmccutcheon.dev
event.sacri.jp
dev.procloud.safire.services
app.se-bayern.de
links.uat.selfsea.org
shaman.land
shermancdesign.com
taktakasla.com
dev.photographer.teampics.org
tourasia.ch
editor.beta.trakto.io
unrivaled.band
www.upee.mx
vickbscontracting.com
v2.whatson.es
yuriy.x.country
www.yanniks.app
Other domains in certificate