Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.wineryxplorer.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 18, 2025
Valid Until
February 16, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:64:D1:75:B1:19:39:30:08:95:19:8A:28:3F:4A:A3:4C:B5:35:0F:A6:C5:AA:D8:F5:A1:30:A0:F2:A3:04:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jenniferwadella.com
www.1on1-design-club.com
29seconds.app
4rentu.com
abcxyznft.com
www.acesr.net
afkar.app
www.amazonremovalorderfeecalculator.com
www.andycragg.co.uk
www.apgar.me
www.appzys.com
aptitudediagnostic.com
aphrm.apto.si
www.artof.science
www.auribises.com
www.autohp.in
web.beyondboundaries.app
bmw-shared-privileges.bigledger.net
billygerhard.info
www.bravelittletiger.com
report.aztech.bycopilot.com
v0.ceylontravelex.com
app.citylock.io
www.club-vmx.com
irunica.co.kr
visita.cochabamba.bo
atform.goautomate.com.my
qr.cometelapp.com
semapp-joigny.cometius.app
www.commitquality.com
links.complices.app
concretepours.com
csokaapartman.hu
app.curtinflyingclub.com.au
www.d9void.app
deepingest.com
desoid.com
elitebags.vip
www.epic.guitars
www.forgottenfaces.de
app.foundershield.com
testing.friendlyforce.live
link.g3stiona.com
www.giverocket.com
m.goodwin.ua
pay.anglpay.gr4vy.app
canvas.grow-force.com
guibsonlizardo.com.br
www.h5browsergames.com
hayesrealtyla.com
ifixgdl.com
www.ikmanstayandride.com
jansilhan.cz
www.javascript-cheatsheet.com
k-acuwellness.com
kvetiny-mirka.cz
leojaytest.10515.net
longtermguru.com
vuecoach.michaelpeng.me
motelkazary.com.br
mrenterprise.world
www.mtupowerlifting.com
www.hml.adm.navigatetrip.com
www.nguyenminhduc.de
app.nyby.com
www.papiruso.com
kaizen-profile-stable.pbcd.net
robbenisland.plankton.mobi
www.polylithic.ai
pslabs.org
pullapp.app
puntoas.com
www.qzz.me
regleware.com
requestiq.com
saturamini.com
qpr-staging.scouthub.app
qprfc-staging.scouthub.app
shelter.app
www.devtest.shopix.me
www.sintelly.app
www.sml.pw
partner.talent-alpha.com
ps.thankyouschool.com
www.therefour.io
triestefamily.com
belgranofitness.turnosweb.app
jugym.turnosweb.app
nolimits.turnosweb.app
wetlandplants.geology.utah.gov
www.variskindo.com
lp2.vilove.de
wxvrfd.vinicius-goncalves.com
www.wallofcomps.com
www.shop.wearelocals.co.uk
wedentplus.com
www.wescodes.tech
www.wineryxplorer.com
licence.ws-svc.de
staging.yokoy.ai
Other domains in certificate