Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=zipreel.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 14, 2025
Valid Until
January 12, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:32:3D:8D:DD:ED:30:E3:A1:21:FD:37:1B:34:66:0C:A5:C6:CE:ED:1A:93:31:B0:A4:6B:03:ED:AE:19:98:CE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mdln.pro
1scor.com
alami.dev
www.alte.app
demo-partner.ampup.io
www.andrewmoral.es
www.anek.org
backpdm.site
bamo.dz
bharath.banothu.com
google.id.bettercorp.co.za
en.biobarica.com
links.blendnow.com
blueammoniaplantgbc.qa
www.brokerflo.com.au
candosoft.nl
checkinnuggets.xyz
cimrdr.com
www.rsp.co.il
cobinno.com
kahut.coders-x.com
cogdb.io
colemancodes.com
redirectme.rgarcita.com.es
ts-consultancy.com.tw
daiylu.com
desertexhibitions.com
calculadora.drfinancas.com
dxtrategy.com
virudhunagar.eacabs.com
eflatunyazilim.com
docs.eluv.io
www.feya.eu.org
iosshare.fakecallerid.io
nanakoims.finncub.com
flipflex.net
foltortechnologies.com
www.foltortechnologies.com
maquettes.foxar.fr
parlamento-mujeres.congresoqroo.gob.mx
greaticevt.org
affiliateexpert.groupone.pl
ms-ardemo.happyfinish.com
www.hartsuite.co.uk
huaxiaschool.org.uk
www.hyx-strategicpr.com
idanschiller.com
innovakemet.com
insightias.org
www.intervalrecognition.com
isyou.io
www.iwdfloripa.com.br
jtburgess.com
repro.keiomed.com
kenailabs.com
kinkychicks69.com
kiotobcn.com
lambda.science
learnings.today
www.linestripeking.com
magicpenny.xyz
maxhartman.co.uk
meble-nicpon.pl
metamix.tech
mhdzmota.com
mlsauok.live
modernicv.com
mtg-tradingpost.com
myrcolcleaning.ca
naoken-naiso.com
numago.nl
www.offthecurriculum.co.uk
app.ontrack.jp
our-deployment.com
www.palladiumbau.com
bestellen.pizza-latorre.de
polarnight.software
www.productdemo.tech
pump.works
rafkan.com
www.rakennuskuivaus.com
staging.raly.io
recgnition.org
riggedwebapp.nl
romanstay.com
cms.saikyo2dome-tbate.com
www.seea.nl
shosundberg.com
ssb.onyx.site2020.com
parent.deva.skool.sg
admin.smartstation.krd
app.sub.tv
pva-admin.talentlytica.com
tinerovoyage.ro
tortowyswiat.pl
trinitymotors.fi
tge.typus.finance
www.windwiderstand.de
www.29000.org
zipreel.in
Other domains in certificate