Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=thomaslawlor.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 12, 2026
Valid Until
July 11, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
93:FC:44:B9:8C:26:72:73:C7:F6:97:03:D2:12:E5:71:7E:00:66:59:02:88:DD:4B:3E:7D:3F:C7:F5:32:3E:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nextsofttech.com
ccc.714.coffee
abundanceledger.com
transport.accorn.pl
acsc.asia
links-amutcomi.acty.com
alliancetrucking.ca
portal.alpinedx.com
ampacumed.net
andrewl.dev
anuncios-vegas.com
rabusch.appshare.com.br
whitelabel.aptimithra.com
baka.com.mx
baneesit.com
basedon.com
blessedsteps.org
brettk.dev
www.brucemelville.com
bryankendall.com
bwemanje.fr
carolan.me.uk
ccsmea.com
dashboard.commoadmins.dev
www.cpcomputerservicecentre.com
djmavflo.com
www.eganhub.com
www.empirich.com
fatreductiontreatment.ca
undercard.feildmaster.com
www.fordhamentertainment.com
microsoft-qa-ideacloud.forgedx.com
formulapickem.com
www.founderequity.com
www.fresnostatecamps.com
greekbuzz.info
www.greyedgegroup.com
cms.imedis.io
admin.impulse.training
influenceonpurpose.com
intocapetown.com
investcode.company
audit.invictaedge.com
d6.jbarr.io
pulse.jiffy.live
www.joe-gosselin.com
joshuablakley.com
jsio.co
kdpextension.com
dev.gateway.labcare.cloud
www.littlebit.in
luckybodega.com
www.magnaindus.com
files.marbal.ca
medichome.cl
track.mintex.network
verify.moeen.bh
www.mrtstayr11.com
design9.msplaunchpad.com
mtv-gifhorn-ski.de
myphammoclan.vn
timi.nahuelmorata.com.ar
www.newdatscha.de
newlessonplan.com
evaluer.nissanvictoriaville.com
admin.creative.optimasysdev.com
apps.pacmime.org
parentstoo.com
carrier.piknship.com
pklog.info
portal.playaar.pk
www.prestonpages.org
puffindesign.ca
www.redvalerian.com
prices.reeltoksocial.com
camp.rogersrecreation.org
rohitdadwal.com
connect-ng-warehouse.rxoconnectuat.rxo.com
scalex.asia
www.science-master.jp
www.searchbotview.com
www.signs-vegas.com
www.smellbound.dev
sohogroups.in
iflex-thailand.solvay.com
rowdiesshuffle.sqwadhq.com
seahawkspoll2admin.sqwadhq.com
react-staffing-staging.staffshift.com
www.stefanjunk.com
stumm-sports.com
szuliq.dev
test.tello.uno
thomaslawlor.com
ukrainify.net
utahathleticscamps.com
sistersbeach-orders.waiterpro.com
www.whatdosquirrelseat.org
wherethehellisglobalwarming.com
games.yawnny.com
www.zhongtai.rest
Other domains in certificate