Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=misarec.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F9:F9:D6:F9:80:73:5F:FA:9C:1B:CD:F0:F6:38:B6:8D:F8:6F:E2:05:F7:D0:34:37:E6:AA:65:70:88:DC:27:68
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kafeido.app
www.610slug.ai
angrejisikhe.in
www.arthousebhadohi.com
admin.atpos.net
www.beinterwoven.com
admin.blossombodyworks.co.nz
l.bnvo.co
bodybysatinva.pl
www.burrn.app
www.bv-marine.com
jianpu.byhannahliu.com
centesima.com
www.chris-lee.org
www.chynarobinson.com
commandes.collectifensemble.com
gdemo.compilorama.com
fixxology-orders.crispnow.com
www.cuadorlaw.com
www.datasent.com
speedo.denolk.dev
www.dent-team.com
wautix-test.devbeebit.com
sports.divolgodigital.com
link.electro.mw
enisledigital.com
app.equitytoken.co
esncosmos.com
fcaint.mu
fetrarij.me
profile.flytheapp.com
app.foreveryng.com
frostchristmasprops.com
dynamic.gorevel.com
gtemperor.com
qa-marketingdashboard.gupshup.io
provider.halacaya.com
hamzappsredirect.store
hannahandandrew.com
mm5-3d.henteko07.com
am.heyagain.co
onboarding-next-staging.homebox.co.uk
invite.hurreytech.com
www.icadev.com
app.ilup.com.br
jannchoy.com
jeerany.com
inventory.johnchristophersantos.com
www.jsffoods.com
hack-the-net.karwos.uk
keynotecast.dev
kingdomk9training.com
xxvjornadascmf.kutamma.com
www.ladylp.com
dev.letkee.com
mahsa-mahdavifar.com
marcolee.work
mariom.org
miamilakespermits.com
www.mike-autobody.com
link.minbr.app
misarec.org
mizunocustom.com
dashboard.mywater.agency
nathaliealvarez.com
www.no-filter.app
www.nobioffers.com
orto.mobi
gamescoin.pacta-cloud.app
lpc.peerly.app
www.prithasdestinations.in
info.prospero.ai
rattidisentina.it
recreationdevelopers.com
www.robotics.cl
www.rubendelaiglesiapregal.es
uat.sagebrain.org
sembrandomusica.com.mx
sharepointtraining.ie
simplicitycomic.com
siniscape.com
web.smyl.one
ira-express-inc.solerabank.com
john-hyre.solerabank.com
armory.solestial.dev
staige.co.uk
www.stardewna.me
stkp.in
symposiumindia.com
taxibus.app
webviews.thecliq.app
thefoolstarot.com
url.tnttkt.org
admin.trench.app
ulkaone.com
pharma.utah.gov
vcnc.dev
www.whiteoutclimbing.com
www.yinzer.net
yourflavors.app
Other domains in certificate