Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cricketscorer.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026
37 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
07:80:D0:84:37:2E:D9:85:CB:1A:F9:51:51:D4:53:E5:B7:A7:A9:8F:8E:FC:F1:9A:2E:16:FA:A7:21:28:F8:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
marsamc.co.kr
incheon.devs.co.kr
dev.gioco.4bp.com.br
abmed.sk
calculator.alfonsov.com
aquagames.co
arbeachhouse.com
www.beblack.in
aquasense.birdy.life
www.boon-app.com
www.butterflymom.in
transcycle.com.ph
www.connectingwithcode.org
cricketscorer.in
www.cssflorida.net
firebase.decathlonpro.fr
account.develop-homehub.site
myreports.dpdlocal.co.uk
checkout.easylivesales.dk
edgar-dias.eu
eigenspace.audio
memes.escuelait.com
www.faragonrenovations.com.au
fernandorodriguezconstrucciones.com
fitnow.health
auth.lynkco.fodina.cloud
www.freshlinen.in
fullwellfreight.com
gamepolicyprivacy.es
geniopay.me
bohemia.getviral.me
expert.gobubble.app
admin-staging.gogetcorp.io
www.gogulong.ph
grinn.nl
growmoney.today
haleikepili.com
pop.hellolluna.com
helpit.co.nz
holidaysthisyear.com
www.isaacezequielsalas.com
isaacnicholls.co.nz
newdev-erp.isthara.com
newdev-partnererp.isthara.com
it.jakucewicz.dev
www.jeffmerrick.net
www.keertips.com
app.kiwibudget.com
kotize.org
www.lawfully.dev
auth.legendoflords.com
www.lf3.fit
www.littleops.io
www.lloyds-mowers.com
secure.mpilo.ai
myatelierbois.fr
link.mylabs.uk
stocks.mywebspace.app
webdemo.nextorder.co.uk
nikanorov.mobi
auth.nivlive.com
noofangled.co.uk
admin.odoya.pt
oudalziyaperfumes.shop
olympus-acc.internal.paperbox.ai
app.periodica.press
planket.shop
auth.pocket-collection.com
rezydencjaaqua.premiumhotel.pl
printingw.xyz
ramanmandal.com
www.realtimebim.in
www.renfrowtech.com
www.rentalsub.com
ridesignup.org
subscribe.rootd.io
sikatechnologies.com
maflnol7jxth97igakmn.smartimob.io
snapperben.co.uk
miniapp-test.sorafinance.com
member.succeedsmart.com
www.sumpoc.net
docs.tailor.guide
www.technimitta.com
dashboard.theasmr.in
www.thegraphfarm.com
app.thingsibuilt.com
www.traumalice.com
tyastonotaufiq.dev
ursulazapletal.at
www.useprompts.com
staging-demo.valuechecker.ai
wp-orders.waiterpro.com
www.willsgaming.com
clock-word-1.wiselywidgets.com
wizheard.com
www.woda.be
app.wundamental.ai
www.xtrea.com
link.yiuivan.cc
Other domains in certificate