Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.loicmotheu.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 25, 2025
Valid Until
March 25, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A9:61:15:88:81:DB:83:FF:1E:E4:B1:EF:DB:F4:B6:7C:F4:A6:B0:4E:D0:F6:0F:3E:82:40:16:87:93:EF:8F:06
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
leosafepackersmovers.com
www.a6labs.co.uk
www.aiartxyz.com
www.alessiobertolini.com
auth.anexplorer.io
static.artistconnectapp.com
dev.developer.audiomob.io
businessrescue.co.za
staging.id.cair.uk
companiaplus-loyalty-web.cbdata.cz
id.cnt.one
getthru.co.th
demo.nu-tech.com.tw
consulticx.com
diecoming.com
diognas.com
blockie.doscontrauno.com
excel-addin.examind.io
www.expertdebugging.com
static.extremezone.su
fishpet.app
livematch.footballcoachs.com
message.footballcoachs.com
fort-x.tech
pwa-dev.gajikuapp.com
www.ggsnt.com
preprod.book-in.groupe-bel.com
stats.guibo.travel
scan.heresacoffee.com
www.hoppityclock.com
www.develop.imperiumsoft.com
iwonderabc.kr
jeroenwolf.nl
www.jondarrer.me.uk
kibeko.de
lavchat-agent-stg.lavenirapps.co
additionmart.leanagility.com
lesamisdejennyalpha.fr
mochizuki-tax.lfv.jp
www.listique.com
ljmwholesale.com
www.loicmotheu.dev
hearst.madhive.com
teleicu.play.medeintegra.app
www.moonpyx.com
moonspay.moons.pe
quiz.pe.moons.solutions
morgan.ninja
dl.morr.my
shopfloor.tvat.motivate.nl
stueckliste-prod.muessig.app
project.ekasaputra.my.id
naomiwatts.com
nasbulegal.com
nelsonmha.ca
www.nerdclub.com.br
www.new-tech.pro
www.nezen.co.nz
niletub.com
niravia.niravramdhanie.com
deloitte.noisegrasp.com
www.notjuzapp.com
www.oggie.ai
dev.til.ojisan.io
www.oyald.org
parkfactura.com
perfectgiftadvisor.com
pet-weight-chart.com
www.test.pikkopay.fr
food2home.piticommerce.com
order.posbel.be
primaverasound.app
www.qthevote.org
quranv.com
www.relationgenius.com
www.rodfatherreels.co.nz
royalguardian.ca
samcorin.com
sarahvalstyne.com
www.scheck24.com
sharespot.me
webhook.staging.shimejis.xyz
www.siyammukela.co.za
signin.test.songbattle.io
www.basen.sparkntnu.no
salem.supercabs.in
store.swimfortri.co.uk
admin-staging.teamtelefoon.nl
thefilter.me
thenerdlabs.org
typed.report
veglegeszsirbontas.hu
survey.velocityps.com.au
fm.stage.voiapp.io
sketchfab.oauth.voxelmax.com
walpet.dz
www.walpurgis-editions.fr
food-diversion.woolworths.com.au
marabraz2.xptoconsig.com.br
xtensiv.io
Other domains in certificate