Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=simpleclub.mx
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F7:C6:8F:A7:FF:B0:42:AC:35:F2:74:BA:44:61:AF:82:4E:F2:9B:D6:3F:57:86:86:E9:74:2D:DC:9A:BD:1B:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nisadyahayu.com
notify.365mechanix.com
abobrinha.net
aboflygplats.fi
www.adhocit.dk
aeiouloja.com.br
agriboss.com
andrewfiel.me
anythingexpert.com
tahado.anyware.software
wbasp06.as-protection.de
us.production.atlascrm.avisi-apps.com
ayutthayathaiwellness.info
admin.babywise.dk
hello.blurb.fm
auth.branddash.io
l.breakfast.tools
www.brendanallen.dev
www.buoy.me
capital-corp.in
www.cappitan.org
www.casaflordesal.app
io.classfunc.com
delete.danarhadistore.co.id
uninus.com.tw
www.cuttingsoup.com
www.danielwjennings.com
dictie.eu
doylecentral.com
www.dapp.dragonereum.io
clearchannel.fiksuruoka.fi
www.forrestdeters.com
fusislabs.com
www.gasaltoque.com
app.gcesarimoveis.com.br
hitsofjax.com
www.home-electric.ro
jp.inamori.work
kiosk.ingka.com
flat360.irdo.net
www.itsserves.com
jakob.rip
jlcalvo.com
jltc.com
api.keybot.dev
countries.khodakovsky.com
dev.renter.leasera.com
lnk.listopad.app
magilhub.com
majasfancy.com
hire.matthewmcardle.com
icp.mercari.in
www.mmorpg.life
apps.nandiraju.com
survey.needs-osaka.net
nextsong.live
www.niftycards.shop
nithinconstructions.in
onzo.oasisgaming.gg
www.odeenesecurity.com
ead.operand.com.br
oxalate.info
www.petergriffin.nl
dev.peymynt.com
aichat.pixels.im
pollyapp.org
www.qko.org.au
www.rafaelizquierdo.com
www.remixmonkey.com
reskilling.net
restfullness.net
ich.rezidnet.com
www.rohans.me
sablecrm.net
build-stg.seens.io
auth-staging.semana.io
simpleclub.mx
dapp.smartkx.io
social.stratfor.com
www.streetwear4you.de
kungfuteaevanston.studiossolution.com
staging.sup7rdb.com
thedyrt.pro
auth.thevangoghstudio.com
demo.thruchat.com
tigran.tech
timetrackerpro.app
tipsrundan.se
minhacentral.trausedu.com.br
era.turnout.events
app.usemason.com
mycoke.utmsmartmanager.com
vapourex.com
conference2.volunteer-vision.com
wapini.cz
wavefoundry.io
whiteangelpublishers.com
winelottery.no
fremont.youngexplorersusa.com
www.youzhuhuitech.com
Other domains in certificate