Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=shirleys-estate.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
07:12:0E:15:0F:53:5C:AE:BC:9B:93:60:3B:CC:44:49:1F:42:ED:5F:1C:81:09:2C:D5:07:87:57:29:1C:DD:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nextops.net
2alan.com
admin.dev.airpayapp.com
www.autohaus-hesse.berlin
app.be-hookd.com
beenalone.com
www.betaindia.org
ambilamp.bine.world
portal.dev-next.eckard.bitstudios.dev
boratltd.com
campodegibraltarendigital.bracelit.es
btstg.com
www.burguernbeer.com.br
carciofo.shop
hidayaha-admin.classet.in
kshetra-admin.classet.in
macademy-admin.classet.in
meluha-admin.classet.in
oasis-admin.classet.in
srigayatri-admin.classet.in
help.classfolios.com
royalstudio.co.in
conceptaccounting.eu
join.dbbl.app
draroseliandrade.drtis.com.br
rdemo.dtws-work.in
www.dustinblad.com
links.eative.com
app.empresas-prosolemca.com
www.exitplant.id
www.expertsutra.com
fliesenaufmass.de
scale.fluin.io
fortunaid.net
friendcastle.org
gabrycina.it
karaoke.garrettmanley.com
pantrify.gartorware.com
m.goatbet16s.com
gosiak.dev
uneon.graphite.space
fili.hibudgeting.com
homerecharge.de
auth.incityoffers.com
www.inocentro.net
mesa.itaueira.com
jelp.com.pe
junjiewei.com
www.kdyzkristianusne.cz
keighly.ca
www.kiddol.com
www.latourosquarries.com
maxpaulson.org
minervaagency.vn
moxie.one
auth.myshowtools.com
pagimovel.nata.dev
quest.ng-conf.com
nielsverheyen.be
www.noahanderson.dev
collision.noih.dev
mobile.imaging.novo.health
www.nutriologataniaflores.com
officesports.online
www.misaa.org.in
www.paipow.com
www.peachtreetransportationinc.com
prevalentstudiorentals.com
pushtodo.org
rainacorp.co.uk
new.ratoong.com
reflexfire.in
marinahotelesvina.rflex.io
rpwebconsulting.com
reveal.rubrev-app.com
drynx.rustylynxgarage.com
connor.salupro.com
www.samuifitnessretreat.com
www.seizu.es
www.shift31.net
shirleys-estate.com
www.sidedooraccess.com
skipvid.com
admin.smarttrails.net
www.smssrilanka.com
surftracker.app
tradewithsurgeon.com
www.triple-design.eu
mop.tubot.es
unemploymenthelpline.com
untilit.works
utags.co
www.vamosjuntos.uy
venturestudiocollective.com
verygood.tech
referral-app-admin-dev.vitas.com
www.walmartmyhealthjourney.com
westcliffathleticscamps.com
wirkaufenihrefahrzeuge.de
swft.zubairv.com
Other domains in certificate