Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=beautybylillacamilla.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:E6:94:C6:B2:32:6B:35:1B:37:23:89:E1:4C:81:74:F9:A7:14:1C:E0:7B:42:0C:52:DE:3D:6D:34:B9:C0:E1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jobyo.ca
dva-tracker.aaronkwilkinson.com
recharge.accounta.app
advmind.org
web.aglive.com
rooms.agorify.com
app.agrcuidar.com.br
eastasia.ai-momentum.com
www.airoiaudit.com
www.amiroid.com
goedenacht-staz.appdashboard.nl
www.artdropgallery.com
athomeseniorcarellc.com
aocs.avicon.org
beautybylillacamilla.com
www.bestcableboy.ca
blocksimmortalizer.com
www.charlottelamm.com
app.citizenservicecloud.com
admin.cloudroutine.com
mee.cmatik.app
compu.ink
www.creditocasafinanciamentos.com.br
cryptoranksnfts.com
www.daltontechservices.com
love.daxxac.dev
digitalartculture.com
dtlabsindia.com
e-magen.com
ecoacademia.me
www.eduqr.dev
escuelaprimariaixlahuitz.com
app.faktur.ai
glaniur.com
app.unilead.mohe.gov.my
www.griffinalgorithm.com
hararidawah.org
www.hello-sushi.ma
signup.hoofit.app
hypedisc.com
id-beratung.com
www.inserve.co
www.investorscout.co
www.jaskiratmusic.com
jinbsc.com
joelmontesdeoca.dev
www.kovitapets.com
kudo-canada.com
littleskool-house.com
www.livescorecards.com
www.lolprogrid.com
lotuscloud.ai
www.lovewitak.com
www.lucasclarkcorporation.com
www.mag.studio
maroondentalhouse.com
mentalizze.app
plataforma.mentalizze.app
www.mhf-canada.com
milaneelucas.com.br
mkastroserv.com
www.mnschoolofhorseshoeing.com
mydbconsultant.com
myhealthprotect.com
www.myhealthprotect.com
ohiobobcatscamps.com
commandor.staging.optimusride.com
ozanalcanoglu.com
pagemarkcomix.com
www.portal-patient.com
proveedorcsi.com
quiridepalawan.com
www.ringsofjupiter.com
app.sagentivum.com
www.saindev.ru
empleo.salupro.com
samneisewander.com
links.sharprank.com
www.speakingpartner.app
bestellen.stadiondo.de
frontend-mentor.stefan-wright.com
stefangisi.info
www.stefangisi.info
sushantcode.com
amber.takeaction.co
tamagorudo.com
tecadm.com
admin.tedbot.net
toodly.co
topbolao.com
www.unidern.com
urbanbinge.com
docs.versionpress.com
pc.vicuatui.com
aperturaempresa.vui.cr
www.war.cards
docs.wecslabs.com
admin.staging.wespond.de
report.xtable.co
youzhuhuitech.com
Other domains in certificate