Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=idealisla.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 30, 2026
Valid Until
July 29, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:50:05:04:92:D7:82:F1:DE:E5:E0:1F:0F:2D:40:14:43:FA:18:9F:54:7D:A4:E7:7A:CD:27:AA:E6:FB:C2:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
khccn.com
wsn.khccn.com
037hd-movie.online
3tshop.no
www.80wash.com
online-islemler.agtdijital.com
aguazulservicos.com.br
qtd.dat.animoca.space
preview.antavi.ch
www.aresmm.com
staging-dashboard.beid.io
benoitmeunier.com
www.calendoo.net
chatojewels.com
www.chatojewels.com
www.climatizacaopro.com.br
chainlink.club602.com
www.conectcompany.com
www.cqspexam.com
www.craftomax.com
crmevidence.xyz
www.crmevidence.xyz
cubend.xyz
foundever.cuponclick.com.mx
mob.deepraft.com
dipkoservicesllc.com
www.dipkoservicesllc.com
www.dobbrick.de
drfischman.cl
dev-web.api.easysmartpay.net
efferent.us
elevenripples.com
entrocanvas.com
www.ethextract.com
felegehiwot.org
www.finestdoors.com
nickel.flitter.fr
fluentmindacademy.com
www.fpcexam.com
web.gerenciadorfinanceiro.app.br
preview.greco.fit
hhe.org.il
hoi.services
idealisla.com
portal.instamedpharma.com
www.karrangupta.com
kitfei.org
www.kojomirai.com
dev.kowid.com
app.leadfrompurpose.com
loltv.org
bhagavathi.macademy.in
mantiklayasamak.com
metricsmerchant.com
mindelia.com.br
mindsonglobal.in
www.mjtinsee.com
www.netzachtechsolution.com
www.neural-works.com
www.neurogenesispsych.com.au
neverlandskincare.co.uk
oldfloridarentals.com
papitosprime.com.br
old.peerdustry.com
pg1-2taskbuilder.com
plenapsi.com.br
qoqmeme.com
www.quarcadvisory.com
order.qvikandgo.com
radzikowskik.pl
www.rebanhosocial.com.br
www.rosato.vc
rsmatchmaking.com
sariely.com
www.senecaiga.com
setitsocial.com
stock.seyeong.kim
sin-city.world
snntech.com.br
auth.social-marketing.io
solotrack.space
www.stindustriesmdu.com
studiocstsas.it
staging.sumeet-joshi.online
lab.swatihospital.com
www.taxtoolkit.co.uk
thalula.io
www.thalula.io
www.thecollectorseye.com
www.thesardul.com
www.thestarcourier.com
daysix.thetraumaapp.com
trustnursery.com
staging.useworkshield.com
valcruservice.com
veierlandhelse.no
set.vocabustudy.org
engage.dupagetownship.voyagernetz.us
www.zandari.app
zrzart.cz
Other domains in certificate