Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=casa66.design
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 03, 2026
Valid Until
July 02, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
12:06:C1:FF:79:A1:47:CF:DA:3E:33:53:8B:4C:66:C5:59:97:22:64:69:B2:82:40:07:21:B1:7E:FF:1E:6A:B6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kinesisthieves.com
www.kinesisthieves.com
www.2mamina.co.za
a-sync.io
abigtech256.com
www.aim.haus
apolline-madeleine.fr
apparq.com.ar
aurielagroup.com
bhaktipass.in
bhavanidev.com
www.bhavanidev.com
boltread.com
tours.busket.net
c-hub.co.za
cafmy.com
www.capximize.com
casa66.design
chimpsense.cc
cocchialab.it
code-gym.de
costwares.com
creatinetoday.com
darrinrosebrook.com
darun.rest
old.dat09vn.com
www.divestudentaid.com
dm-academy.net
drajuliagabriela.com.br
earthd.net
senrecep.easyapp.co
financeiro.emprow.com
errorfalse.com
excelskillsacademy.in
expressfitnessug.com
www.forbon-group.com
fortextechnology.com
cfdi-qa.fraiche.com.mx
desktop.freedcamp.download
frostcard.io
www.fundacionmexicosolidario.com
aurelien.gasse.fr
diest.gemeenteraad.live
genieeduworld.com
trackflow.geniussau.in
share.getoutnabout.co.uk
godutch.cloud
googleprojectcontrails.com
preview.guardifyx.com
moodlet.hawry.net
hlavac-business.sk
hotam.shop
hqdealflow.com
book.jodacare.com
www.kkmakarnataka.org
cv.dev.klarcommunity.com
kogyan.com
app.landlordpulse.co.uk
leaptek.no
www.leaptek.no
lifehack.works
www.limitless.ninja
www.mainsystemsit.com.br
www.mandalaglobalhealth.org
maplefinancehub.ca
maximepelissier.systems
med-amine.dev
medstrim.com
www.medstrim.com
mountainmonk.shop
musicprofileviewer.com
www.neoquantumlabs.com
neuralitytech.com
nibraslibrary.online
norit.io
operajedi.com
www.parthynex.com
autobewerten.pkw.de
plushanalytics.com
auth.proshnoai.com
pass.qyon.com.br
assist.recoveries.legal
resellerprosoftware.com
www.samuelweb.com.br
symplicare-ai.simamdigital.com
swash.sirius.press
skitgd.ru
smarthealinghub.com
dev.smash.pet
tecnoingenieriabo.com
www.dashboard.tenczyninfo.com
thayananutri.com.br
numberlink.thewingsmission.com
tripledesign.nl
opm.phar.umich.edu
unifab-global.com
uateva.postgrado.medicina.usac.edu.gt
vivusnaturae.com
warpkode.net
worldtechsmarts.com
Other domains in certificate