Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=eggseed.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 28, 2025
Valid Until
February 26, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:44:69:38:01:DE:1C:4E:20:C2:C9:56:F0:FA:31:8A:C0:EA:9E:32:0A:8E:7F:FE:EF:ED:7E:97:E7:67:8A:DA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
matheusrmatias.dev.br
hcn.123abc.com
bld-kongfigurator.3dcloud.io
866wedo.ca
adenm.ca
argentovivo.aditusculture.com
anc.adv.br
aksoftx.com
www.almaresk.com
alojatesevilla.es
ayotomiwasalau.com
bachrony.dev
basistheory.cc
admin.batamx.co
www.batamx.co
booking.belizeresortandspa.com
www.bfcenter.fi
www.bilkentscheduler.com
boolers.xyz
fitze.bryankenneth.com
casagrandeleiloes.com.br
caseymay.co.uk
monitoring.chektdev.com
cipherlog.info
claytonc.xyz
www.cloudinfra.co
lexpopulusolutions.co.in
creator.coddy.tech
creativeworldwide.nyc
crossfit-timers.com
timetracker.danielangel.co
prep.deliversense.com
dravyamspices.in
dev.drivees.com
www.e-arch.co.uk
preprod.eddress.co
eggseed.com
evakshi.com
examatics.com
fallingdeathgames.com
getallium.com
gluebaby.com
www.hellostu.xyz
iptv.infoskillstechnology.com
www.intramedical.net
app.iwmac.com
jacobwinkelman.com
jangua.com
jgcwedding.com
mc.kitsbetter.com
costs.leowithlove.co.uk
lifedoctor-campus.com
player.live24.app
myaccountangular.londonhydro.com
accounts.meetapro.com
mifundaalamedida.com.mx
necesity.net
admin.newfanglednetworks.com
www.oed.wiki
namakkal.onewaytravels.in
sivaganga.onewaytravels.in
tenkasi.onewaytravels.in
thanjavur.onewaytravels.in
thiruvallur.onewaytravels.in
thiruvarur.onewaytravels.in
thoothukudi.onewaytravels.in
tirunelveli.onewaytravels.in
tirupati.onewaytravels.in
tiruvannamalai.onewaytravels.in
test.piggibanks.com
admin.postredi.com
www.pov.lol
qjob.app
admin-panel-dev9.qlub.cloud
www.quantslate.com
help.querypro.io
www.rajmeetssimran.com
recyqr.com
widget-stg.resgo.pl
rhinocerosinlove.com
sayhisol.com
shenzhenconsult.com
shoutoutlabs.io
sunnysft.com
text.study
thealistgeeks.com
tinyhomes.thebuilder.ai
hills4me.thepetdoor.asia
therapeuticmonitoring.com
timezonewhiz.com
historia.trimmedsky.com
tutorro.pl
itera-rh.usemobile.com.br
vardaanlovesvijay.in
dev.application.vendorpm.com
junghans.virtual-brand.space
share.wizzdev.chat
www.worlddragracingcircuit.com
www.yoavtamir.com
ziuni.co.jp
Other domains in certificate