Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dachy-lesniewski.pl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 09, 2026
Valid Until
June 07, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:E9:59:35:A2:CA:92:E8:01:3B:AC:E4:5F:AA:96:24:5A:76:CC:55:DE:AE:E4:E5:37:D2:71:63:EE:06:03:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jtwdiscipleship.com
activiot.io
superapp.actorsguildofnigeria.org
www.alisherazifoundation.org
allt.ai
www.arrowsbs.in
avitusit.com
awlhire.se
www.bana.com.sa
app-develop.bebop.app
bellsteq.com
www.blablaland.gr
app.borderpayafrica.com
felicia.bossani.de
redirect.bramble.io
brooksidefarm.biz
buydomainanytime.com
www.citoapi.com
clab.club
coastygames.com
hd.coibd.me
copalnet.com
dachy-lesniewski.pl
www.dandykart.com
day3x.com
www.diasfro.com
dnpinnovativestrategies.com
drafranciacalix.com
www.dralisherazi.com
ecl.sh
elegentinteriors.in
eliteacademypalermo.it
energowise.com
eventmeet.xyz
affiliate.falodating.com
frfisheries.com
admin.futsalsuper5s.com.au
homecalgary.ca
www.homecalgary.ca
hubrishealth.in
inertiaentranceprep.dpdns.org
tv.its-not.tv
tamilnadu.kcglobed.com
kidmo.net
www.lantakanemas.com
lexmart.lk
www.lohiyaandassociates.in
madisonexperts.com
mapresencedigitale.com
maqdous-records.com
maykjony.com
medschooldiscount.com
club.maria-demo.megafortris.app
meritpro.live
mohammadimohammad.com
momentum-cycles.co.uk
monohub.co
motioncloud.co
multados.com.br
muneebtech.in
mybabybio.com
www.mytvplus.ca
account.myvaillant.com
tienda.nexpe.app
nyahbecker.com
okanerdincarslan.me
leopold.orpheo.cloud
pavilaw.co.za
www.peizu.autos
pinchthis.com
post.com
smeny.pronoia.cz
www.purrfecttool.com
www.quix.in
autochats.ragx.in
rep-app.jp
royalcardsclub.com
www.royalcardsclub.com
samuelkelechiu.ng
millssgr.sgroneclick.com
link.specialquiz.it
ssi-analytics.com
www.telesca.com.br
thegoodgeek.com
rydpay.thinxcloud.de
tivio.ca
auth.stg.tradeapp.com
www.truehug.in
vektornode.com
pinata.verblike.com
vibecalls.ai
verify.vtrakit.com
weblynk.in
widadpatisserie.com
www.woolfertilizer.com
xcode.hr
py.yugthapar.com
yusefboulam.com
auth.zaouly.com
zenhub.online
Other domains in certificate