Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=tampabaytamilacademy.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3F:11:D6:B6:65:23:1A:63:56:F8:79:9C:71:22:AC:41:7A:02:36:3D:2C:68:37:33:1E:E9:80:AB:1E:65:12:06
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
script-src 'report-sample' 'nonce-FqapmwpHmHXQpwa_HalPIw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self',require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
links.bulljang.com
5.dasio.com
accesscontroll.com
web-app.ahazou.com
adomany.akasapjt.hu
alexstarosolsky.co.uk
ansafdesigns.com
playground.apxor.com
aspectcalculator.com
barahmaasmarwadityohar.in
bobtoebes.com
bubble-buy.com
bulgamart.com
data.clotidal.pl
chiefoftech.cxo.co.in
reynald.com.ng
costruisciituoisuccessi.it
www.d2runewords.com
pricing.dbs.cl
outlook.dealflow.app
kms.dev-trans.com
login.digirecords.in
mdbs.dlm.pl
dmaorg.site
donatedoughnut.com
www.dxtrategy.com
www.eltecon.com.mx
advertiser.fairday.app
farmresq.com
www.feelslike.de
multibet-test.gentsys.com
gigapps.net
suistaging.go-games.gg
dev.gr-vins-balade-viticole.com
grabthatspot.com
www.grahamstyres.co.uk
gripwell.com
ncux-chart.hangeelab.com
www.jamesfuller.dev
www.joningib.com
www.kamati.org
www.karlswims.com
kerrywillyoumarry.me
dashboard.khenkel.de
app.leadzilla.ai
lensfrontu.com
bonpreu.loyal.guru
affco.test.m2x.app
demo.marinegpt.ai
assistent.mars3142.org
www.mayaroos.nl
mealstogether.org
devlog.micropp.net
mirkomachetti.it
zbrowser2.mkelley.dev
www.motionkick.com
mydigitalsignage.com
halorecognition.neoufitness.com
links.nowat.app
oakay.com
omgvchat.com
app.orai.com
www.palabit.se
live-staging.pathmotion.io
www.phototag.com.br
placebin.online
poradca.online
pranilrathod.dev
beta.prepa.io
capa.ventaempresa.promart.dev
edu21-beta.prontosolucoes.com.br
www.propersp.com
devapp.rapyd.ai
revolutionary.software
www.ruyibookkeeping.ca
clinical.scilifelab.se
shaqfaqs.com
ride.sherpaapp.co
shforn.com
bi.snapmentor.no
mysunlight.sorgenia.it
qa.spread-care.com
studenttimetable.com
maintenance.svenfish.com
sweetrolls.net
tampabaytamilacademy.org
app.thecivilize.co
trendtube.world
trinityfintech.in
trungtamdienlanhhanoi24hh.com
tsang.se
tulukanunez.turnosweb.app
ushopbkk.com
app-dev-melio.vacationcounts.com
viannzwaag.nl
www.voyayge.co
webadventureworld.nl
webfaceid.com
www.woodywooo.com
zonetraces.com
Other domains in certificate