Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=search-maps.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 25, 2025
Valid Until
January 23, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:4E:79:FE:54:34:A4:62:13:75:3E:82:21:18:59:75:F1:72:96:AD:75:FC:A8:A9:96:6E:B5:51:32:76:57:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
links.hiredly.com
2019.harves.net
www.22dconsulting.us
webcontrol-admin.agrico.co.za
alexisamadei.fr
alkhulasahq8.com
dev.alreadywon.me
aminea.art
www.anagrowers.com
api.live-dx-360.stag.antyba.com
onedirectionvideos.apptget.com
appzyra.com
www.ariel-games.com
aspireimpex.com
assholepass.com
atxtechdad.com
www.austinprecisionmedicine.com
ayos.me
www.bogenel.com.br
dl.boktok.com
app.braineeapp.com
corporate.bridgelinxpk.com
billing.bridgesalliance.org
www.cjcoffey.com
clarojuegotextual.13.cl
ramanathapuram.yazhdroptaxi.co.in
ffmpeg.codelin.vip
www.reynald.com.ng
conceptandcolor.com
cosmicpaws.io
www.creekcoding.com
ticketsaas.crmppy.com
docs.open.api.crosslog.life
cscorona.no
dev.cvcprs.com
dailygames.es
tempotraining.dann.org
darwinramirez.com
dmbtech.dev
dogsummit.club
dovemint.com
www.drannvanwaes.be
svg.easypubphr.fr
photo.eggstudio.jp
app.timemize.endora.dev
lib.ffbridge.fr
furina.me
www.futureisnear.me
s04finals.gameofapps.org
poker.gentsys.com
gioelemedde.it
www.glassbox.one
pro.glisspass.fr
teack.globalcarecenter.co.uk
www.hindutemplesofusa.org
testing.ibolus.ca
www.invr.network
www.isogl.org
jaredcoin.vip
joeandsarah.co.uk
justineandmichael.eu
www.lectolab.ar
link.letshang.org
aire-madrid.lobelia.earth
lovemath.us
macchinah.com
mangouser.com
data.manti.pl
mhchu.com
www.mhchu.com
www.milchotalev.com
mizu.mx
centroscomerciales-quiz.cl.moons.rocks
www.movd.ch
employee-app.moyer.to
www.nbestudos.com
pollabingo-space.demos.nuboservo.com
www.persotypes.fr
www.places.be
sellers.popup.lt
quitaboletos.com.br
reyco.me
www.rfrweb.it
app.robocob.mx
search-maps.com
silsaiconnects.com
www.sulandrd.com
despachos.taki.club
www.tapotap.com
receiptera.thefreetoolchest.com
thespeechtherapyclinic.com
www.timevault.org
app.prod.tracis.io
www.turingtext.de
www.uncleuncool.net
us.first.public.uveye.app
veloapli.vipsport.lv
dashboard.voltag.dev
www.xaverkapeller.io
ybrs.nl
Other domains in certificate