Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=tomazs.impactwrap.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 23, 2026
Valid Until
June 21, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2B:EF:69:EF:7D:E9:0E:D6:CF:4C:19:79:64:BA:C8:DE:2D:70:CE:11:49:A1:44:1D:B0:97:54:7A:8F:E3:C9:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
lightpic.in
90us-inc.net
www.aaronfletcher.co.uk
pautas.adx.com.gt
aigfe.affinity.do
afi.run
www.ajtek.fi
www.alphaderivatives.in
lego.apisec.mx
www.apron.cloud
www.chingaderas.studio
christianusod.tech
cleo-childminding.co.uk
stead.cole.la
s.cps.onl
creavity.ca
volunteer.croatianpride.org
brain.dailytool4u.com
daniel-wei.art
www.dealsweep.in
firebasetest.devtc.pro
dogjimtraining.co.uk
www.drilldown.online
sensor-data.ecosync.energy
salon.edvin.space
epic.place
www.evautosavings.com
www.feelix.xyz
auth.fiamind.com
schedule.finnworks.dev
link.staging.freshbybrookshires.com
www.fulllink.lat
www.galaxytale.de
gezhan.buzz
www.gezhan.buzz
goahead.lol
www.goahead.lol
create.nearcon2022.humans.work
dev.light-bulb-moment.illuminet.io
tomazs.impactwrap.dev
isaac.rip
jeremyswisherkneemri.com
jochenmeyvisch.com
crm.k12app.in
kenso.in
kiniqe.com
tools.koq.jp
krtkpowerandinfra.com
ligarechner.de
locationemu.org
www.lucky13.net
maiday.life
mariamadeira.com.br
melink.click
mesero.do
moboto.com
avatars.mstrd.io
www.mymn.work
navyk.pl
neri.ia.br
neuralnets.ia.br
www.nexarco.com
splitbae.nullzeroai.info
stage.onlinebonus.ca
www.onty.io
hectareas.orsep.cl
peakwealth.hair
placegreatness.com
playyzap.com
primepainters.co.nz
qiajuda.sandbox.qitech.com.br
www.rajs.com.np
refliix.com
invoicenewinfo.reso.vn
rootwork.cc
www.saritayjosue.wedding
myshoutouts.set.live
wfdcmbqznst2mqpsugot.smartimob.io
admin.souler.com
torneos.sportelia.es
stclairpool.com
sticomp.site
connect.stranexsolutions.com
www.connect.stranexsolutions.com
www.tabledecoratingideas.com
tdvcore.buzz
www.tdvcore.buzz
www.thebooknookcafe.in
tonestudio.dev
trackva.com.co
futbologystats.tranchant.dev
apps.trelliscope.org
www.vibexapps.com
viralize.me
vladsventures.com
wakinchan.work
weddyshop.com
prod-admin.winresponse.io
staffbyte.xelure.com
ziptrivia.io
Other domains in certificate