Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.beerbets.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:1A:34:FD:64:4B:EB:74:61:5D:F2:C7:FC:15:3F:73:50:5D:44:A3:65:D6:B0:BE:33:E9:7F:02:15:1B:EB:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kozelkaelectric.com
www.100pilabs.com
1nv1n.com
1penny.io
adadigiverse.com
aganhealthcare.com
ambulancegps.com
www.andreadowyer.com
www.app-haus.com
www.astrolyra.com
web.autoforwardtelegram.com
bananabits.com
memories.barredo.dev
portal.bathnroom.com
www.beatsradio.org
bedibug.com
www.beerbets.com
www.berkayworks.com
abstimmungen.bernerzeitung.ch
bouba.at
dash.brain-vita.com
app.bubsjournal.com
www.bulljang.com
campfire-crew.com
app.capido.nl
castillonabogados.com
codeindi.com
www.countriesbeen.com
courseconnects.com
comercial-cyd-tec.cydocs.cl
danwilkerson.com
www.diabrisk.com
www.djobnet.com
dqs-safety.co.za
drbrightskinclinic.com
www.duettfiscalistas.com
auth.edvoy.com
eldonchew.com
www.eu-taf.com
emulator.evolvequickly.com
staging.f.chat
yolo.fiopl.com
groups.forbidden-sheets.com
www.foristudio.com
fronteradevs.com
gamecraftersguild.com
wrg.gci-digital.com
ct-staging.gestion-traiteur.app
adapter.gets.cloud
graphcollection.com
www.guitarlessonswolverhampton.com
www.harrisongoosen.com
stage.havefab.com
holt-and-catch-fire.com
httpsms.com
inboxelixir.com
future-farm.iota.org
www.jh-offen.de
joannaadam.com
www.joannaadam.com
careerkey.jobsforlife.org
documentacion.juniorgruas.com
cdn.kelvinorduna.com
app.labrador.ai
lentesnovavisual.com
demo.mardox.university
play.microservicios.co
www.mountains.group
mp2u.in
my.nativeslides.com
maxidecesare.net.ar
newgenml.com
www.nexhala.com
nitra.ai
oktarkari.com
programobscura.com
psilocinlabs.com
fleet.puremathsolutions.com
qalp.ar
cupid.radr.in
sanawa.co
kfrac.seismos.com
shusson.info
speech.games
www.spent.club
spiritbearkaratekobudo.ca
stas.gifts
sms-shorten-ooredoo.swarmio.media
symbiot.in
techatro.com
app.terratwin.com
admin-dev.theredheadedhostess.com
www.tickets-onchain.com
meteor.timkrause.dev
tinasboutique.info
todayilearned.app
stage.tripmaker.city
www.vpxrstudio.com
dev.my.w3lcome.com
www.washitworkshop.club
Other domains in certificate