Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=munrol.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:7A:FD:67:CE:5C:A5:50:B0:51:20:1E:D8:41:E4:C6:77:6F:90:B0:49:C6:7A:7A:F6:86:4E:2D:3A:28:7F:4B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
links.jadoh.co
161f.com
ademhodzic.com
my.adeptly.ai
app.allynscafe.com
andrewmtam.com
andrewtwort.com
arasoyo.com
arnaudjalbert.com
astrocoltstudio.com
link.awal.com
worldentertainment.axel-order.com
pdfextract.balajuluri.com
balmoventures.com
beard.ink
bestworldpackersandmovers.in
bgnswami.in
bhavinraval.com
www.buildsaasappingo.com
www.caitlinks.com
candicechak.com
capemaybagel.com
carolynradmanovich.com
catfarmcrypto.com
character-count-online.com
charityforneedy.org
portal.chaserhq.com
www.chiayifilmstudio.com
instore-test.clienteller.com
control.cmorider.com
cinegram.co.film
contetial.com
play.cotuongoffline.com
cremona.in
ext-web-admin-i.dev-ltl-xpo.com
elondontsueme.com
sintpaulusvti.flockim.com
www.ganeshtapodham.com
game-of-life.garrettroell.com
holacheck.mx
i-studio.io
imageclipboard.com
indocontenturl.com
innofyre.net
instabear.app
ipothi.com
www.ipsator.com
staging.jampad.app
justnews.es
kprappcompile.com
testinvest.landex.ai
letsmakeloot.com
www.loganrasmussen.com
tzedakah-pushke.madacenter.com
mdpl.app
mikewill.net
dlink.mumara.com
munrol.com
staging.myfiona.com
myworkbox.app
www.neonboard.ca
newlife-sakae.com
newmove.ai
nobioffers.com
app.nyfty.ai
omnitechelectronics.ca
www.opencubelabs.com
www.peppsoakdale.com
app-dev.photoshoot.ai
www.pinefog.com
presspledge.com
www.protus.ai
puzzlehealthcare.com
link.realmadridplay.com
reglot.com
rmend.app
summer.sheltonacademyschools.com
shouldiuseflex.com
encoder.skrub.dev
spaily.com
ucl.portal.splendo.health
www.stepwin.ca
www.stickerfun.app
events.stmary-rehab.com
beta.swingwizard.ai
www.tasteindiancuisine.com
teegame.app
www.testportlandgeneral.com
thedigi.app
app.thepassbyavc.com.au
admin.tintlaunch.com
dev.deals.trytaste.app
www.unitworkers.com
www.waitedco.com
wewod.app
www.withgcp.io
admin.wodenevents.com
www.wonder.games
ylwtacos.ca
chameleon.zoocommerce.tech
Other domains in certificate