Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pglnx.id
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 22, 2026
Valid Until
April 22, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A9:14:BF:9E:E9:7A:34:4B:FE:36:0D:24:0F:9A:B0:0E:CF:D6:46:74:D4:5C:D0:1B:73:11:C5:E8:84:F0:06:E9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
login.letterdrop.com
accqfasttaxvb.com
www.alexbogovich.com
ignite.allymarhealthsolutions.com
dev-phenov3.anuvabio.io
www.aquariusbeauty.co.uk
app.athenaintel.io
www.beforethebark.com
www.ben-mayer.com
app.besni.com.br
bijouxartigianali.it
signin.blueprintcorp.com
capitolhilldentistryandbraces.com
carewokx.com
www.cartdiscussion.com
www.carthage-foods.com
www.merchants.cashea.app
checkup.christus.mx
www.thebiography.co.in
www.wayit.co.kr
coffeepartyapp.com
geekay.contentcard.com
app.contigo.social
app.cooiny.com
www.coronaee.com.mx
cyrencare.com
dairaagency.com
damngoodpepper.com
delivergrocery.ca
www.derwandi.ae
designrealitytech.com
invite.deton.no
www.dimepiece.co
app.dockx.be
drewszurko.com
educationaz.com
pramaan.eduswitch.com
carefit.ekinnex.com
atila.elcocrc.com
content.emblemtechnologies.com
www.epic.systems
www.erikritter.io
fwd.exner.cc
fabric-buttons.com
www.faisalgedi.com
feellikeaceo.com
felixpaquette.com
www.financefornonfinancialmanagerstraining.ie
app.finitopro.ch
www.firecoffeestudios.com
fireline.org.uk
a0gl.foodle.su
footytube.in
stg.formzin.com
gdlstonesnow.com
www.getbrickwise.com
gnssmetrics.com
authorization.firenotes.gocloud.link
goescompany.com
www.goldwhiff.com
gophergo.dev
harvest-trulieve-stores.com
app.housematch.ai
www.hyperact.co
app.impera.swiss
mloz-id.input4you.be
led.iotproject.pw
www.jumbofun.fun
kitohuu.kasoft.vn
www.keris.agency
stg-portal.koesokki.jp
app.latourneedesproducteurs.com
v3.centre.lavenirapps.co
loukikdas.com
marinazanardo.com.br
immersive-dev.multiverse.ai
neonexus.co
neonvil.com
www.nimbletill.ca
vipinkhandelwal1.okvk.in
ombrelleria.com
app.itp.org.in
pglnx.id
jaggeweer.poweredbypunk.co.za
www.rabbittt.com
recoff.cloud
shoppinessmart.com
www.skypirates.us
verify.spacex3897.club
app.staging.sprueche-app.de
demo-stage.stellium.life
console.suflerapp.ru
cms.supercolor.sk
www.tabletopmusic.com
studio.teleprompter.app
thaifoodmedia.com
tsamste.com
auth.uxquran.com
www.altajir.withorca.com
ziaway.ca
Other domains in certificate