Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=codalogical.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:36:7F:AB:B9:5C:65:FE:66:FE:6E:C4:96:26:56:D6:3B:AC:9C:64:BA:A0:6D:EE:54:D0:2C:D1:F4:AE:1F:0F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
joyfulnoisenation.com
absoluteenglishuk.co.uk
acchospital.in
acetechnologies.tech
vio.antizeiti.de
www.aoai.gr
www.arrorromilibro.com
www.astridbangkeramik.dk
mis.eco.atomx.asia
bip-newsletter.net
byebyeq.com
caeserv.com
www.cafeos.live
cartizoinnovation.com
www.cashzzz.com
chrisdwoodby.com
erm2.cmatik.dev
www.tsodilo.co.bw
www.green-app.co.il
quickplay.co.in
codalogical.com
dev.dataextract.co
datari.com
davidgalph.com
dev-csr.dena.com
www.admin.denversantaclausshop.org
tctss-pnd.dev-ltl-xpo.com
duralyze.com
earlyalerting.com
stagingpos.easybus.app
timeline.eclipzit.com
eco7solar.com
spsignup.eemerg.com
ericjoseph.net
ezapys.com
ttru.fnxfit.com
admin.freshblips.com
fretio.live
garachicoalday.com
gedenken-helmstedt.de
www.glisspass.fr
helpinghandbehavioralhealth.com
highorderanalytics.com
app-qa.ilima.co.za
acceptance-de-nnl.input4you.be
mission-control.insideskeleton.com
old.inviser.cz
istanbuldk.com
www.jill9.com
www.kennewickmachinery.com
ki-jo.com
shoployalty.konstantinedatunishvili.com
lamfoods.vn
leclubsport.com
fb-demo.liveb4buy.com
nagase-north.logivan.com
pepsico-food.logivan.com
www.maximomalaiu.com
test.frelimo.mayais.co.za
ace-taxi.megataxi.com
www.mementocorp.com
www.mindsparksventures.com
www.minghaikan.top
musclebutter.store
www.myenglishprep.com
www.ogram.co
admin.ohparking.com
orthosbiblestudy.com
patisserierabih.com
www.pieterjanderidder.be
packeta.podnikat.online
prestigioushomerenovations.com
www.punchline.club
www.pyts.link
tazalyk.qrq.app
ravillamed.com
dev.reddal.gg
richcreek.dev
install.self.plus
selfserve.sellyourcarfast.com.au
time.sjmedie.dk
link-staging.skipr.ninja
www.smimportdiesel.com
snapwise.snapcore.in
evolution.sogafit.net
solisense.nl
votacion.sosadiazeventos.com
sputnik-4.com
studio30th.com
susunails.co.uk
swaniyoga.fr
www.termtrainer.com
www.thriveonmedia.com
tinus-it.nl
undertea.com
blog.verbatic.io
nhs.versori.com
vvarthan7.dev
yaytext.com
admin-app.zeminet.com
Other domains in certificate