Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.harshjoshi.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 19, 2025
Valid Until
March 19, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D1:8C:6A:73:18:D6:F5:FD:B0:DB:E2:E8:CB:92:F1:38:2D:01:63:2F:FF:20:D4:65:3F:35:95:4C:09:45:68:A8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
manager.rendezwine.com
adamtash.com
lgmsecure.aghedgedesk.com
app.alekzen.com
app.amazing.dev
www.basecampmatch.com
breakroomchatter.com
www.bunguu.com
bvscheidt.dev
calmalgo.com
docs.cameron.rs
www.charmcompanies.com
clivedesigns.com
clustium.com
www.pluco.co.in
direct-law.co.kr
leb.com.ph
maacpreprod.cresclab.com
cromius.app
staging.booking.cumlaude.travel
dev-wlab.com
quickswap.dragonfoundry.com
pokemon-go.drewterry.dev
ebitclub.com
www.englishtalky.com
estankovic.com
floragaffney.com
fmvingenieriaysoluciones.com
www.fmvingenieriaysoluciones.com
gdjq.foodle.su
gestarapp.com
gibel.dev
firebase.giftyastage.com
servants.gms.church
gonzaloreales.art
mojefizjo.nfz.gov.pl
admin.growtovchani.com
szv.gyakorlatias-angol.hu
game.happibits.com
www.harshjoshi.dev
employee.highridge.app
annguyenvan2811.id.vn
invoiceproweb.com
www.iyadmarzouka.com
puma.jlonetouch.com.au
api.keeton.cloud
sms.kingstreet.com
chat.konstantinedatunishvili.com
kopsitsolutions.com
www.lebenslauf-24.de
lumynation.com
aidigital.madhive.com
mahaveerpro.com
masterframing.com.au
matchroyale3d.com
avagate.millisite.com
miseandthyme.com
demo-galaxy.mosaicapp.com
niovis.com
notrealamazon.com
www.nplusnfilms.com
lskj8973rkj32lkdfjnvbe.staging.nyansget.com
www.ojaspote.com
paparazzi.global
apps.pencilapp.com
easy-dm.pirochta.com
www.plaxispython.com
app.pocketgeekmobile.com
premium.club
propostaeletrica.com.br
raceadminservices.com
www.radicle.io
www.reveil.online
app.sa-growth.com
www.sageiptv.co
sageiptv.com
www.sageiptv.com
saidmorales.com
seecode.run
sempanelinha.com.br
servicescaler.com
app.shopiness.vn
link-int.smile-direct.com
solution-ice.com
next.sonsana.com
cabinet.studiossolution.com
taxhub.ai
theant.space
weather.theorygenerator.com
www.usakkamera.com
utopiamedtech.com
uvasesoriasinmobiliarias.com
lab.verve.lk
victordorneles.com.br
victormartingarcia.com
www.victormartingarcia.com
politiek.webzites.nl
wize.nl
link.staging.xcarepro.com
dev.yunfei.li
Other domains in certificate