Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=nextbigthing.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 31, 2025
Valid Until
January 29, 2026
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:30:C9:97:CE:0A:AC:04:CD:1F:D4:A9:9B:8B:A7:70:04:2B:5E:D9:D6:67:15:27:35:E7:6C:B1:FD:A4:BB:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
learningabode.in
sagt.acuizen.com
adrian.im
quiz20.algostreak.com
allyhealthobgyn.com
www.alpha.re
www.articles.autoformsai.com
bcmarcus-portfolio.com
app.beapolo.io
app.beepaudio.com
ks-bbti.belong.co.jp
staking.bowheadhealth.com
carrosseriesteendam.be
cdl.team
bluebird.co.id
b-cont.co.il
www.beescreazione.com.ng
thiagocaponegri.compareaki.com
register.constructionawards.ie
controldefect.com
www.cresus-lorraine.fr
covid.dbhir.com
dashboard.decisionjournalapp.com
www.derkgame.com
dogfacegolf.com
stark.dycar.com.ar
edwardaddley.co.uk
messaging.electsys.tech
workshopemblock.emblock.in
embracell.com.br
eskd-customer.com
fgacoolitcard.com.au
www.frideo.com
www.gapoist.com
gqlbin.com
iolaunch.com
www.johndoe.dev
jointruly.com
reelcheck.jollygoodplus.com
app.kikoff.ch
kloodin.me
lacasitaamarilla.com
www.liquidhotmagma.rocks
dev-invite.livebazaar.tv
dev-video.livebazaar.tv
video.livebazaar.tv
loophereandnow.com
admin.lovb.com
truongxuan.m1studio.co
adapticon.mariusclaret.com
www.mathpunks.com
app.mathquizily.com
am2021.mediel.se
account.stag.mirageid.com
www.montant-smic.com
legal.moons.pe
v.mowlali.com
centroscomerciales-onsite.mymoons.co
n8n.expert
qr.namsutech.com
pic-meinekrone.mentor.neccton.com
rsnchallenge.neoufitness.com
newpeakbodysculpting.com
nextbigthing.dev
tools.nourami.com
oilservapp.com
one-shumei.com
my.passcall.io
pat-hansen.com
portmarnockguides.com
www.qsabogados.com
qsp-1-0-0.qualified.io
rcd1000.org
stage-forms.remoteinspection.no
aporo-insight.roboticsplus.co.nz
www.sabinaya.com
dallas.scouthub.app
scribb.app
semertis.com
sevone.tech
sgadrones.com
simplebrains.com
r.skapatech.com
snookercoach147.com
srprintlabels.com
stratics.io
www.sushantbaskota.net
www.svscontrols.com
thenannycare.com
thesupplyhawk.com
cuentas.topdividendos.com
kalk.tu.no
test.studies.uhda.health
vs.urbs.me
uslane.com
vaveda.games
www.beta.wiip.co
food.zmbush.com
agent.zomnio.com
www.zzz.team
Other domains in certificate