DNS Gurus
Open Cached · just now
80/100 SECURITY SCORE

Certificate Information

Subject
CN=zacharywauer.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026 86 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
09:9A:EE:41:C7:D4:E8:C8:29:53:6F:EF:BC:72:64:98:28:61:51:A5:CA:5A:AC:B0:A6:1D:4D:EF:CF:9E:C4:C4
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
link.youpay.digital

Other domains in certificate

dev.app.123abc.com
360.vibeo.com.au
accha.app
www.aginix.tech
link.alphaconvites.com.br
asbgoodfoods.com
tim-tickets.atlas-apps.link
behtarlife.in
www.betterbin.app
scuemlichheimvolley.deeplinks.bfansports.com
www.bniqroo.com
candcventuresllc.com
app.master.cargotic.com
www.jdelectricworks.co.in
carolekinoti.co.ke
dev.cremedelacrm.com
d2r.world
dealerpal.co.uk
digibars.id
admin.dishes-app.com
docwizard.io
www.eatwelldiary.com
www.elektroniks.com
emma-igarashi.art
m3u.enchantedpixel.com
www.ethion.cloud
farmers.eventosvillatoscana.com.mx
schedules.fithub.id
www.workshop.fognet.world
frodoe.com
beta.gastronaut.ai
www.giftbrain.shop
www.goquasi.com
todo.gyanaloy.com
www.helsinki-malminlentoasema.fi
blog.hemath.dev
www.hiplii.com
teacher.hurreytech.com
inori-salon.com
identity-widget2.insent.ai
app.isheepdog.com
beta.jaspicar.co.za
www.jeffmuter.com
go.kizuspinenecksupport.com
tournamentcenter-tools-dev.lab900.com
www.lauraheino.net
www.lawrencemcafee.com
www.lemarchedesproducteurs.fr
solintegra-performance.lernit.app
lesfinesbouchesmx.com
cryptoverse.majordesigner.com
demo.managerio.gr
l.masmovilenergia.es
app.minna-no-ginko.com
murikarox.com
www.myhappyprogram.com
www.mymercato.online
www.mynameisspit.com
www.naileditbuildersmt.com
advanta.neoufitness.com
nicksoler.com
www.notabletherapy.com
onmybestday.com
pavel-works.dev
pawsforabeer.com
phuse.ca
www.pickapier.com
pickolo.app
poodlecurls.com
dev3.da.ct.porsevej.dk
www.proformapilates.com
qad.com.br
www.qialex.me
rbespacios.com
app.relative-ci.com
relayhub.io
richardrendering.com
auth.ritetones.com
rolsma.com
lejog.rowans.page
carrier.rxoconnectdemo.rxo.com
ryan-jacobs.co.za
shuffle.fun
www.steelandhammers.com
url.stjohnfenton.org
baocao.stradevn.com
raya.strata.ph
suliutech.com
www.thebestcompanyever.dev
sorting-visualizer.timkrause.dev
gmlegal.trustin.app
soyuz.turnosweb.app
admin.twistedchisels.com
typo3-association.org
utopiachats.com
yieldfarming.wifey.finance
wolmultiply.app
zachalcorn.com
zacharywauer.com