DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=brendag.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026 60 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
00:DB:7E:37:A7:9A:7A:D2:0B:70:58:78:BC:BB:66:BD:34:0A:60:53:1A:4D:8F:EA:F5:F7:BE:9C:42:D8:F2:85
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
miri-graphic.com

Other domains in certificate

2d2.ai
www.40use.com
alphalogy.net
autoscoutkft.hu
b2vtech.com
www.bemyconsultant.com
bitservices.be
bobbimonsta.es
brendag.dev
shorty.britto.dev
preview-apps.bythewake.com
www.caeportfolio.com
abs.cascadiaconsultive.com
cesisonhoinfantil.com
chintanparmar.dev
bajrangfurniture.co.in dharmapuri.yazhdroptaxi.co.in
manual-smart-or.ottimosystems.co.th
dev.colavo.me
cosad-benin.org
cosmolink.in
api.cryptorastas.xyz
www.dakshesh.dev
marketplace.descubretrinidad.com
staging1566.earnhaus.com
www.emerch.co.uk
eternitysaga.io
www.etusersgroup.org
eugene-tours.com
existentacle.com
fatturepdf.it
fungamezones.com
fomo.gethuan.com
globalsportsme.com
gratisfood.com
greg.coffee
live.hexdice.com
auth.hibuddy.ca
lgpartnerrewards.incentable.com
www.indi-psychology.org
www.ingles.la
www.innosante.fr
intakifi.io
www.isgavinfiredyet.com
jenperson.dev
jotlu.co.uk
labofthelost.com
langarica.me
dev.latinad.com
lawyersashumans.com
lecoursierinternational.com
widgets.leezair.com
partner.loadsure.net
www.louislariccia.com
link.miike7.com
www.mishandmush.com
www.mogswamp.com
musibohemia.com
netspeedtestmaster.com
resume.nilsr.me
verify.nsicsm.com
onsmartpath.com
onspotlocksmiths.co.uk
overmaxapps.com
pakketpakket.nl
www.parmgidda.ca
persiantranslation.info
app.point.lat
link.staging.powerpal.net
purebase.ru
dashboard.recheck.jp
redka.dev
www.rfpneurology.com
cartoes.roda.dev
www.routz.io
app.runyondataservices.com
static-page-staging.salary-hero.com
app.scaleup.de
scannerweb.fr
sean-smith.co.uk
smallblueidea.com
xapp.sonarmuse.org
dev.auth.sozi.co.jp
uaascramble.sqwadhq.com
standardtrading.ca
assets.stanhopefd.com
app.stark.money
www.stg-a9k-corp.dev
stvex.com
app.sweet.tv
tacnote.com
app.tapxp.com
termtrainer.com
windsupkitesurfing.toomoosegames.com
www.trainum.app
typespeedai.com
www.vaticsoft.com
wisteria-co.com
www.xeghepmientrung.com