Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=harishale.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 25, 2026
Valid Until
April 25, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:75:AB:39:A9:51:BA:5A:2C:FC:B0:85:9B:27:9B:C1:A1:63:FB:0B:CC:54:2D:91:FF:6B:87:B0:BE:0C:B9:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
legdaytoday.com
himiq.0net.red
0x14a05csat.net
www.ai-factory.systems
news.animuscyberspace.com
policy.autorayatimur.com
dev-portal.sandbox.awellhealth.com
www.beloz.com.co
brno.bike-trails.cz
auth-cobs-staging.cntxt.com
corporate.cardata.com.tr
browse.testv3.contentfabric.io
e.contract-jobs.com
www.danielanutri.com.br
apphome-stg.ddangkongschool.com
js-sexpr.dephony.com
collection.dhygen.com
digishala.com
portal-hml.doctorclin.com.br
dreamsjewels.in
asmaa.e3lannat.com
limagas.edsys.com.br
www.ehboict.nl
emlabs.pl
static.fluence.academy
a0hy.foodle.su
auth.fortneti.com
www.freshwavemvnt.com
agent.fsocietysj.com
www.futurity.technology
auth.gardenr.com
rule-30.garrettroell.com
mt-dev-admin.geneowebapp.com
letter.geoit.dev
login.uat.getcredit.one
gfmri.org
gigvib.com
giperrone.com.br
giraffesarenotreal.com
fire.gorbotics.com
admin.qa.hairtect.jp
harishale.com
hornerdigital.ch
store.humphree.com
s.inteamchat.com
protean.jakeharris.dev
padelromand.jeremymalera.ch
johanna-pokemon.fr
fly.kakathink.com
kloudxel.com
www.kommerjeginn.no
www.ksp-kalajoki.fi
www.kwikbi.app
www.lohnn.se
luki-link.lukb.ch
staging.metstudio.net
healthcare.microba.com
www.micsel.com
minjooandtim.com
web.mobies.id
download.mobitazsolutions.com
yoshino.mtbpark.info
mysds.in
scoreless.neurohealthalliance.org
nifl.football
lp.career.nikkei.com
12daysofar.orangelv.com
www.outlearnapp.com
stage.parrofy.com
www.philt3r.com
www.primelistings.in
poistu.raha.fi
rietas.fi
www.rootip.io
saltyflights.com
www.samsonc.dev
iching.saycoo.com
settlar.com
www.shapeofrisk.com
university.sharly.ai
avaliacao.sigabemsc.com
sildenafil7online.com
www.stayillusion.ch
www.staging-app.superboxcr.com
swnfreebooter.net
www.talentosdocampo.com.br
instance4.tallyfor.com
www.tavaresplace.com
www.thaibasil-denver.com
timezonewiz.com
www.tramaserviciospublicitarios.com
www.ukeyyo.com
links.unscriptedposingapp.com
vosa-rock.cz
www.westvalley.gr
beta.wwtb4m.xyz
yayhorsey.com
admin-gvw.yobeeapp.au
link.yselfie.com
zernesslab.co.za
Other domains in certificate