Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.dallaswaldrop.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 09, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:46:D1:BC:00:03:33:3C:84:96:BE:76:B6:E3:FE:1A:06:32:3C:4B:4D:00:D3:DC:7B:5D:33:03:96:2C:11:30
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mydesignar.com
test.7kitsolutions.com
training.adrianseowmarketing.com
stonexportal.aghedgedesk.com
eval.allergansurgicaleducation.com
www.alleyapp.nl
ambleteusois.fr
www.amyandnick.wedding
anantcaterer.com
www.admin.anatta.dev
antonida.lv
ar-bol.com
app.bahiacamaroes.com.br
sb.baldwin.com
weight.bartpower.de
blackstonemarketing.us
www.blockhacker.io
bo-neurologopedie.be
compendium.brighamdiaz.com
www.brodiecarlisle.com
beiersdorf.cateringportal.io
cipay.com.br
www.codeharmony.dev
colomr.dev
datalens-demo.complyark.com
copenhunt.dk
cosmoazulbar.com
dist.cn.craftsake.com
dailymathsreview.au
www.dallaswaldrop.com
deltanow.net
www.devaware.net
q1-mydeliveries.dpd.co.uk
www.dropstaxi.in
dynamicsmind.in
roulette-chgk.effective.band
filipmarko.se
www.fixedassets.jo
ai-see-you.genielab.co
gisvonice.is
grandprixinfluenceetsante.com
tests.helloenglish.com
dynamic.helloskip.com
crud.demo.hmgrwn.app
www.humankind.tokyo
atracciondetalento.inter.mx
auth.ischools.ly
joshmay.digital
www.kalpkumarshah.com
www.kapadokyaninmerkezi.com
mealplan.keto-diet-app.com
krafe.net
leonov-dom.com
www.manalkerzazi.ma
api-atendimento.meuelevestage.com
www.mocyno.com
myeventpass.com
ncsu.page
neukram.com.br
nftees.com
nftwordy.com
app.nxtplay.pro
staging-beta.onfact.be
optimalnutritionexperts.com
gifted.or.jp
mtg.ornstio.com
www.parksat.com.br
pensioenbijteamterminal.nl
www.pixipie.com
www.pizzeriaitalia.cl
tata-poc.aws.playco.com
pockfin.com
www.pockfin.com
primaveraspa.premiumhotel.pl
pro-trader.ch
raamesht.com
minecraft.reblochor.dev
wax-creator.redreamer.io
www.quickscreen.riedel.wtf
project.robocode.ua
portal.securelife.dk
sheffieldaluminum.com
www.snlk.mx
www.social-copilot.com
ssscrackerssivakasi.in
www.suvoy.fi
www.tagticketing.com
techiela.net
www.thekamalatoe.com
www.thewellness-nook.com
www.tubers-project.com
www.ukmee.com
petitions.vutov.org
pass.vyeron.com
v0.mui.wertarbyte.com
www.wizonchain.com
wow.bio
report.zdorovi.help
www.zl-stores.com
www.zosimadis.com
Other domains in certificate