Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=sv-sw.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 11, 2025
Valid Until
January 09, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:93:CF:EC:98:F2:26:9B:2B:8B:1A:D8:77:6B:C2:90:C7:2D:2C:38:13:70:61:29:E3:6C:5D:F1:73:24:43:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mstrds.com
thegivingplate.180hb.com
www.200east83rdstreet.com
hybrid-direct-app.5loyalty.com
tictactoe.alignitgames.com
angular-training.com
www.atfirstsite.app
autalytics.com
www.avnir-integration.com
me.becsupport.com
sistema.beerads.app
www.bets.band
bgmitournaments.com
bingomillonarioplus.com
caraqarapp.qa
www.caselyst.com
web2.centraldasapostas.net
api.cliptakes.com
clusteer.com
cruisible.com
cybersecurity-sb.com
pricing-staging.dbs.cl
slides.devsontap.com
www.dolchi.watch
ducdang.dev
crm.ehryourway.com
eupagames.com
centergy-tax.f2bportfolio.com
www.faunacity.org
www.fessior.dev
www.firebasemanager.com
recipes.foodiaz.app
www.recipes.foodiaz.app
vendor.foreverware.app
ghostrelax.pro
sellwell.gupshup.io
hbgeneralcontractors.ca
my.hellodigitalbuddy.com
howtobuildcredithistory.com
sdcard.impactwrap.com
www.impaird.com
invosglobal.com
snapfit-storybook.journeyh.io
justscout.app
www.karutalog.com
kingrelax.pro
masterdis.net
application.medicapp.in
menu-7.com
url.mirabelpages.com
clinic.misalud.ai
mooriii.com
app.motibet.jp
myvo.com.br
jason.nazario.me
neoufitness.com
app.neurahealth.co
fdl.nogizaka-fractal.com
www.nrsk.co.jp
ogacasa.com
www.operator.app
betaauth.optiwe.com
www.oskitchen-prien.de
www.padeltactic.com
www.panmagallanes.com
pixelayers.com
www.playne.se
room.pomoroom.com
sandbox.admin.portariaja.com
rb.prometheum.space
ptb.kids
www.puzzlestone.net
checkout.quickcheckoutpage.com
dev.boadmin.rendezwine.com
app.safesitecheckin.com
sawir.app
scancon.ca
sewsweetminkydesigns.app
shareyourfortune.com
miamiohscratch.sqwadhq.com
staging.stamped.ninja
steadytrack.app
security.stefanprokop.dev
sunbox.ps
sv-sw.com
tanzil.dev
www.pondeljak.thedeev.com
themixbutton.com
tiryakihukuk.com
app.topic.agency
s.trell.co
tubelaces.com
tubelaces.de
www.upnorth.vc
valtteriskog.fi
voxmedica.it
warshadirect.com
whiteoutclimbing.com
portal.xsolar.com.au
zacatecascapital.com
Other domains in certificate