Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.hostmania.eu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
36 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
96:59:34:9D:BF:46:77:DD:9D:D8:38:56:83:FF:20:D3:EA:51:FB:EB:F7:63:CF:25:6A:7F:07:87:8C:3C:D0:07
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
katatech.com.au
rstbrands-test.3dcloud.io
aehgallery.com
agriconnect.ma
apo.agristar.com.mx
aide-tools.com
intellitrack.ajstacks.com
albertmitty.com
alchema.app
alicebenninger.com
www.allagentplaner.com
www.allenklare.com
book.almosafer.com
www.avinashv.dev
badshahtrading.com
beyondorganicsolutions.com
editor.birdiememory.com
bkitsolution.com
bobrichz.com
www.brittanycoffey.com
cameronsrocks.com
get.stage.celebrate.app
toki-pona.cervonwong.com
tquity.cloudframework.app
www.danielsuhfitness.com
www.deepstudy.app
www.devsontap.com
dynexparts.com
electronise.co.uk
cerebro.enygma.ai
redirect.epap.app
game.evaluationspark.com
www.finportal.app
colors.funapp.day
admin.gamewin.in
genevievekarlein.com
upgrad.certificate.givemycertificate.com
www.harem.one
app.harpiaresidencial.com
hasrahman.com
dashboard.helloloana.com
www.hostmania.eu
www.indiastaff.in
providers.injaus.co
agent.instalily.ai
jipderksen.com
udec-demo.klarway.com
kurasub.com
fitgarden.le-dub.com
trackinn.lernit.app
dashboard.linky.app
auth.stg.lo-beam.com
lodzkigamejam.pl
huonglee-release.m1studio.co
mereaux.net
metiq.la
tuning.my.id
cloud.naxs.com.ar
chatbotui.dev.novafutur.com
www.numilink.com
dev.onlinemeetups.app
www.outdr.com
www.phonearchaeology.com
gardaworld.prodeo-live.com
customerdemo.qernilapp.com
lense.quantapeople.com
www.rannabatihsgroup.com
stg.gegg.re2fe.com
remotelists.net
app.revolutiones.com
sales.revolutiones.com
staging.rida.ai
dev.rokin.ai
santosweb.tech
synapse.sevaro.com
shillio.xyz
signifyd.co.uk
singinglessonsexeter.com
sportacs.de
switch-psychologie.com
syncscore.com.br
www.taf16.com
firebeare2e.testdomaindonotuse.com
thehubseason.nl
thinkofme.us
tokentousd.com
www.tourrion.com
traumalice.com
triage-ai.com
staging-lagunabeach.trueomni.com
www.tunekey.app
www.ultimateos.app
va3bcv.ca
vanmac.ca
engage.aovmfwvfd9c7hu8a2oqu.voyagernetz.us
codex.vyeron.com
womeninspirefoundation.org
ybcannabis.ca
zazcredit.mx
captacaoqr.zurcbrasil.com.br
Other domains in certificate