Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gwizz.source-fellows.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:B8:39:43:9E:10:AC:A2:E5:2C:71:D1:3D:72:C5:51:25:CD:62:4C:3C:DA:1F:99:25:FE:C4:A1:19:5D:01:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
localenlp.com
2015.eazeup.com
www.adogan.nl
dev.alexandre-paradis.com
areotraveller.it
www.attentivemembers.com
www.babel.tools
burningmanfilm.com
cadule.com
prro.medias.com.ua
inservice-docs.coopersurgical.com
orion.covetech.dev
cybertayoltita.com
app.dailyeod.com
www.damianchavira.com
www.dcsolarventures.com
sharing.desarrollotic.com
deseopuro.com
kwd-jiyugaoka.for.dinii.jp
driveawayn11ltd.co.uk
home.eanosgold.com
pay.emerge.nz
emres.uk
esquissebeats.com
staging.cms.expectful.com
subscribe.ezturns.com
pusc.findmeaningfulwork.com
a0fz.foodle.su
unifox.foxar.fr
www.freshprojects.eu
www.getelogic.com
www.getstudysolution.com
invoice.guidex.app
ideonvn.com
billing.cloud.ikala.tv
www.iknow.education
ingegneriabernasconi.it
itdogtics.com
iwomm.se
jdchoi.com
jmcharbonneau.com
josiahbuxton.com
kamijoharuto.com
keraprofessional.com
kernerdev.com
www.kibbleapp.com
web.kira.app
fallback-firebase.gaea.kiwisns.com
hats.kofounder.ee
www.konfirmed.com
letiroirachaussettes.fr
www.levelpb.co.uk
lightideasdc.com
lift.lucyber.club
lupikenn.com
massbook.co
awash1.meander.media
meetbabymunnerley.com
www.meetinganalytics.com
www.miterabit.com
mochaclass.com
msnking.com
najemseddiqi.com
nationalpng.com
neulink.cloud
noclah-klopotka.sk
beehive.oberbics.at
ortiz-construction.com
paglamart.com
mms.processshop.com
app.radiokasoot.com
randomwalkingapp.com
www.rishalab.in
www.riutordadvocats.com
rollastory.app
www.sabasa.no
verify.seereisen.de
sheikhrasel.com
shema.bg
snaplink.xyz
unchained.solerabank.com
soumission-avantageuse.ca
gwizz.source-fellows.com
groceries.speirs.io
www.studioballon.it
tams.taxiassociations.co.za
scanner.dev.testevisual.com.br
www.theshopifycoders.com
cms.thiagoshoes.nl
crm.trick17.it
dlnt.ttdyce.com
w3s.uc-bcf.dev
www.v43.app
visdevelop.com
labs.websays.com
magnus.wowmaking.net
wpsofficemod.store
wybe.app
ybcannabis.com
emojle.zinck.xyz
Other domains in certificate