Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gdk7.foodle.su
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7D:B5:D9:EA:62:F9:CF:36:08:57:34:34:82:56:27:85:DF:E4:98:F3:A8:83:66:3B:35:D4:AC:FF:E4:83:FC:F9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mamakoduje.cz
app.alghadcenter.com
barronsoftware.com
photography.beppekarlsson.com
commandefournisseur-outils.cafedemarie.fr
delega-dev.web.carrefour.it
casualga.me
stalker.choppy.zip
app.churchnotesapp.com
ca-franche-comte-test.civitimeapp.com
demohandicap-gameapp.civitimeapp.com
leclerc.civitimeapp.com
claimtowers.com
bisericabaden.clearenterprise.ch
realty9.co.kr
suitfabric-booking.co.kr
kindaprec.com.tw
panel.contax.mx
links.contemporaneipizza.com
counsellingwithtaruna.com
kamaji.dentall.dev
dentistathome.com
overagepic-s.dev-ltl-xpo.com
www.digitalmusicfolder.com
www.earthtimelines.com
eloniscool.com
emonbars.com
auth.evalumo.com
dev.familytools.app
demo.fantasy-keepers.com
fendifrado.com
fmconsultancybw.com
gdk7.foodle.su
www.franshenwinetours.co.za
globalriskmodeling.com
goyellc.com
goyemedia.com
info.gypsian.com
hannasamia.com
www.heymenu.org
home-flow.de
www.huppelearn.com
ifal.dev
docs.ignite.com
ignite.com
ima.ai
admin.fairprice.invue.live
itriedit.com
www.jdstudioweb.com.ar
app.kangaroorewards.com
www.katerinakyjanka.cz
staging-kg.kojo-shin.com
www.cheatkorea.kro.kr
dev.kultursphaere.sh
dev.en.frame.lokalebon.nl
luciditynetworks.net
www.maodino.com
meetobjectives.com
app.mijndossiervoorjou.nl
stg-web.minna-no-ginko.com
www.misspentyouth.com
apps.wescast.mszgs.com
www.neshamamassage.com
novacorenorth.com
www.openfooty.org
www.orinqo.co.za
outlandersjourney.com
programkod.se
qadleanmanufacturing.com
qaysdwekat.com
link.qjam.com
quantumaicom.com
raise.live
realplantio.com.br
www.reaperstudy.com
sync.redbull.co.za
robin-sim.fr
satoria.robindeneckere.be
roxaneetchristophe.be
www.royrishabh.com
saikrishna.io
store.scandal-capsuletoy.com
playon.scottheckel.com
screamdb.com
www.serifgunenc.com
setandforget.online
network.slidesup.com
spelarpoolen.se
www.stanleyfam.com
www.stendin.com
tcgguide.com
auth.techket.com
www.thinkfa.st
www.throwdown.app
trinkapp.tobibrtnr.de
rastrello.tresastronautas.com
url.turning.io
univers-kmw.com
www.vinecloud.co.za
app-staging-hot.zenport.io
Other domains in certificate