Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=nf.tools
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
33 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1D:75:B3:C7:E4:DA:FA:B9:D7:B9:BC:68:6B:A8:F2:7A:89:B2:B4:AE:CD:20:E0:A3:5A:15:9C:C0:0A:2D:02:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-GX-Bhx5ln1h6ccuTaTnUVg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mychamber.app
www.agendakit.com
www.al-taswia.com
www.antalyakardeslertadilat.com
aparnapooja.com
sigma.cao-gehandicaptenzorg.appdashboard.nl
artyom.space
bethere.com.ar
borondicustom.com.br
staging.chirr.app
beta.codetransform.ai
www.covid19.gg
www.creativepermaculture.com
www.creperialaplaza.com
www.cryptoindex.app
room.dastafilez.com
multisig.defikingdoms.com
luna27.depopcing.com
distrelux.com
www.eksnuoma.lt
www.esaude.online
ezgoodbuilds.net
keller-construction.f2bportfolio.com
www.finbi.pl
sa.finnovex.com
www.foodsingularity.com
share-rastreio.fretecorreios.com
christophe.gauge.website
ipad.gcadscreens.com
reunite.getmodemagic.com
goldorblue.com
focus.greekyearbook.com
heliois.com
hubright.eu
intelectussolucoes.com.br
forum.isthmus.com
agent.itrood.com
apps.jirem.com
www.jooselohi.pl
analytics.kakukaku.app
kesslerprimarycare.com
www.konect.social
www.ksrconvention.com
latintadelcalamar.com
legalsegur.com
sandbox.lesbonscomptes.app
developer-qa.lfconnect.com
www.linkbus.app
locnapps.com
uat.lottosocial.com
public.lunchnow.com
www.macronti.com
www.marcosoglobal.com
www.martosmotorsport.es
micandpose.com
montacabana-camping.com
agendar.co.moons.solutions
soycandidato.co.moons.solutions
www.myholidaystracker.com
namechit.com
natevanbonn.com
nf.tools
niduu.app
noteclerk.com
peace.novaquach.com
challenge.oecogroep.com
outrightplay.com
playlisthound.com
static.prodivers.com
dev.qokoon.com
blog.respeitoltd.com
rukidoo.com
www.saadsaadi.com
app.shapepay.co.za
silkeborg-beachvolley.dk
skeddo.com
beta.spanishforkids.com
auth.storystarters.co
bilal.swifttechlabs.com
tabletale.ru
tapkit.com
link.telesense.app
www.tellellis.com
www.thoughtalogue.com
auth.ticketnote.dev
www.timches.com
fdl-dev-ggo.tokyo-cdn.com
tomtastic.com
travelfitnesspass.com
www.tryzulu.com
yunta.turnosweb.app
u-trainer-fitness.com
sfc.uranium92.art
viradia.co
www.vivamusica.es
webdevadmin.com
www.whatsintherefrigerator.com
www.winkler-it.solutions
ww-bau.com
dl.xrink.me
Other domains in certificate