Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=promptdeck.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:15:CA:AB:1B:45:C9:0E:8B:11:EC:26:08:D0:1D:B5:F7:A4:D1:B4:5E:19:CE:E8:E5:B7:2F:4B:26:C8:2E:DA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
menu.mccarthyspub.com.mx
8ya-booth.info
www.advokatgusland.no
www.foo.akita-it.com
alkalaam.com
tickly-todo.alokdasofficial.in
www.ankhaa.xyz
asterr.world
app.atlasintelligenceos.com
badmintonpal.com
baitho.in
beerscovery.com
callsensei.com
canadiandrivingacademy.com
www.clasco.co.za
beta.paramanu.co.in
quanly.truongminh.com.vn
www.complia.dk
www.darntootingames.com
app.doggocracy.com
dotvillain.com
easygolf.vn
www.ellyson.io
budget.elpit.sk
web-sdk.gassets.emarsys.net
docs.esflutter.dev
eurobeantraveller.com
dash-sls.felipemarx.com.br
findmasajid.com
vispak.floorin.ee
funkydraw.com
admin-constellation.preprod.ghs.fr
www.good-fusion.ai
hdademo.com
healthtower.us
herpstracker.com
hiringmind.in
hpdreamlandadventures.com
hurtgirls.com
www.ihbeya.com
imbianchinoprato.it
www.impodrill.pe
improve-biz.com
icontact.infosatme.com
jamallta.com
jcmarineservices.com
jersonquintero.com
jialinwujw.com
www.justpicksports.com
www.kairos-compass.com
khanqah.org
kolonihave-arkitekten.dk
kolonihavearkitekten.dk
lacastle.in
www.landthaicuisine.com.au
levytskyi.online
urls.linescale.dev
irisapp.lugus.digital
mahar.digital
www.marc-steele.com
medtrackr.com
moredolab.com
myabaya.qa
myitadvisory.com
www.mysuigeneris.com
lig-csm.cns.net.tw
www.nioloans.com
www.ordu.com.au
provider.organizemed.com
oxiacore.com
www.driver.parcelquest.co.za
parsfood.lt
www.peterkyengo.com
philomena-art.com
picnogram.com
pjbapps.com
pravind.dev
promptdeck.com
priya-official.publicvm.com
quelccayaicecap.com
rmbtravels.com
rubberbandmancreations.com
sbingenieria.com.ar
www.scalei.com.br
shapeupyourmind.online
simbacourse.com
simpleclub.us
staging-handshake.spreekit.com
technobiz.io
techx.live
timjaya.com
trim-kit.com
turismodeplaya.com
universalmediapartnership.com
app-dev.unscript.ai
weddingplannersinindia.com
wedobits.ie
wor-s.com
worksystemsxmas.dk
cms.x200labs.com
Other domains in certificate