Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=akwaabaconnect.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:5B:58:4F:6A:7E:A6:AE:0B:28:26:27:10:32:A9:1F:F3:31:0C:92:BD:91:FA:A0:17:97:BA:FC:12:10:7B:23
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jhdev.be
dev.cway.28east.co.za
3939.moe
lowes-kitchen-visualizer.3dcloud.io
www.abdullahaldeen.dev
www.ajahunt.ee
akwaabaconnect.com
allsmilessvg.com
asyncdevs.io
www.atomarchitect.com
development.bestatdigital.com
turnkey-dev.boxwood.dev
dev.budgethelper.app
cle.vision
www.codeme.club
link.collegepass.org
www.prajwol-shrestha.com.np
lime.consteelsoftware.com
crcforms.com
de-raamfolie-shop.nl
teste123.drtis.com.br
koyo.elsa.sg
entremind.cl
www.esatoivola.fi
flashpea.com
go1.flirtplan.net
fumerosport.com
galeridenapp.online
www.gilmon.co
app.givingishuman.com
redirect.glafie.com
mail.gogogarden.dk
gomi.tech
dev.gostream.co
haqtech.net
open.hookle.net
hoto.dev
www.humanpoint.org
dev.riskradar.illuminet.io
www.judhajitsarkar.in
blog.kaceres.dev
www.kortio.se
gbow.kreateiq.com
letter.lightone.dev
mergingkc.org
ticket.mfs.dk
michaelkastl.com
demo.mmevent.no
force-us-app.moj.io
valdevienne.montri.fr
seasons.moscow.sport
mrseven.sg
neovault.app
www.newengineeringworks.in
nvwrestling.org
odysseykankakee.com
vvosco01.osco-app.nl
kaizen-profile-dev5.pbcd.net
plastics-designer.com
positivemovement.co.uk
new.printjobprocessing.com
www.puffindesign.ca
e2e.dev.quantumrfid.com
reserver.lu
richardlengyel.com
www.rushilshah.dev
vadiba.saulesaptieka.lv
shengtai.my
shiacommunity.org
app.shipwithjulz.com
skatecityng.com
short.smartpayvn.com
edithybrid.smass-solutions.in
smilecaredentalclinics.in
www.snookercoach147.com
app.songtreasures.org
www.srianjaneyamayurveda.in
welcometothejungle40party.swanmoments.net
sykango.com
techsolid.io
minigolfking.games.tetherstudios.com
tetrixgauss.com
thatcomeup.io
thetwinsbrewingcompany.com
www.timhilliard.com
l.titandistance.com
a.tjbsuperyachts.com
developer.toddkrupa.com
www.tolapp.fi
vip.trackdmusic.com
trovilo.co
turbinesoft.net
app.upsway.io
usmanshahid.com
vanbibber.org
www.vigiz.com.br
viivanallemustaa.fi
fonk-orders.waiterpro.com
admin.wt.wowdesk.jp
www.zrh.me
Other domains in certificate