Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=wowpropertysummit.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 05, 2025
Valid Until
February 03, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DA:B7:AB:B2:AB:CC:8C:39:1E:A4:2E:09:DE:EB:B4:83:D1:F2:C9:E5:DD:DD:75:4C:40:FF:85:2E:F2:33:B7:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mathieu.smarzyk.com
2x2.social
azek-bom-recipes-test.3dcloud.io
www.a1balajipackersmovers.com
adityajoshi.online
akp48.akpmakes.tech
www.amielectro.com
anchoritsolutions.net
anticode.me
armadaops.com
asima.co.uk
atmfintech.com
triplewhale.austerewear.com
www.barnesip.eu
pain.biobarica.com
www.bizgrab.io
blastronaut.co
dl.botitapp.com
lataja25.bracelit.es
brandonenwezoh.com
capncrunchadventure.com
omnichannel.cenhud.com
www.chathamroom.com
app.checkseats.com
cible.app
babylulu.clau.io
learnwithone.co.in
paramanu.co.in
www.commfire.com.br
dakiktech.com
datzpress.kr
drnadiv.com
staging.easie.in
eft-item-tracker.site
www.erickylinnboda.com
teachers.escolaconquer.com.br
facundoferreira.com
www.find01.com
fityogurt.app
foodforhim.com
foodosia.de
gamequanque.store
www.globalize.io
www.gwilson.info
vortex.hamletco.space
hand-tools-market.com
happinestindia.com
heimkoma.is
api.hsbomfimcontabilidade.com.br
hugoborsier.fr
www.industrialpmr.com
www.inputhealth.net
jethro.link
jimba.cloud
jngp.100.pn
apply-develop.judicialappointments.digital
www.jutil.org
www.keeponroaming.tech
www.lilno.co.nz
longo.africa
lunarelectric.in
ismor.mor.company
moveon.support
movingbay.com
player.mrandmrsgame.com
naturalsolutions.one
www.orbanforest.ca
oscargo.es
editor.pixis.ai
www.beta.planosoi.online
catalog.plastecity.com
plum8.games
dev.qitech.app
quickresponse.app
link.ra9plus.jp
www.raeuber.io
rebrr.nl
www.sagarwatamkar.com
merlin-assessment.samfoot.co.uk
www.skypopcorn.com
smpgservices.co.uk
app.surfpayapp.com
www.sustainnovatechlabs.com
digi.sviamiprimonraj.in
switchitgame.com
cards.thirdrailcreative.com
partner1emenu.triggersplus.com
horuscross.turnosweb.app
twogirlsonesofa.cz
www.twolast.com
bsa-dev.tzelei.com
vi.vacancy-filler.co.uk
watermaniapuzzle.shop
wayoflono.xyz
partner.withpara.com
wowpropertysummit.com
www.wowpropertysummit.com
xtea.app
zigmasoftware.in
ziweischolar.life
Other domains in certificate