Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.blastfurnace.com.au
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:AF:FB:0E:57:58:5D:A0:1D:DD:0B:0C:93:BA:D7:59:2E:9A:F8:54:F0:85:69:3C:95:E1:A9:6A:32:69:10:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
novonext.com
aavida.com.br
aimaopex.co.uk
www.airzoneholidays.com
aliboasia.com
etsap.athelneysoft.com
www.audioread.com
account.awaio.com
panel.backapp.world
www.being-japan.com
www.benjaminaster.com
synexion.biyyik.com
bkautocorp.com
www.blastfurnace.com.au
admin.bube.business
ccprojetos.com.br
clinicasilvaodontologia.com.br
www.ptc0.cloudns.nz
puskesmas-ganding.co.id
www.intisolusi.co.id
admin.prottoy.com.bd
www.flertflow.conexaosutil.com.br
www.cucunguk.com
www.cybertayoltita.com
dentalya.ie
shobdle.devs-core.com
www.digitalglow.be
dreamsofttechpollachi.com
app.eeaser.com
portfolio.ejrayo.com
elon4afdclaim.meme
client.encoreyaw.com
engelkapital.com
experia.xyz
edu.feralic.hr
www.glidecourier.com
goldserviceid.app
web.helptools.com.br
hollo.ng
vagasway.iicio.com.br
app.imstar.io
whatsapp.irts-one.com
ishmeetsethi.com
ardy-renita.itsyourdayofficial.com
jestplus.az
justaremindertolivelife.com
kawailabs.com
app.kithli.com
biv-test.klarway.com
www.kngtechnologies.com
www.lab-keiba.com
lafraise.app
www.leezova.com
letstangerine.com
quotebuilder.litta.co
editor.loftyapps.com
links.lupl.com
hugo.makiot.com
www.marimo.dev
connect.mindsethealth.com
auth.modheader.com
app.mosaicapp.com
nusa-base.mzili.my.id
www.mygameswishlist.com
www.nicoledebono.com
peab.onpointify.com
phelanjo.io
photio.cl
www.pomcs.com
ptown.app
qnips.com
zoom.dev.revnt.io
fishy.robotpantsstudios.com
www.sbbenjamin.com
misohitomoji.shijimiworks.com
bridgeport.shopstudentstore.com
sis-security.de
www.slingui.com
smartinno.net
chat-gemini.smartmation.com
socialglovespromo.com
auth.stimsims.com
sunsoup.shop
www.susiadapters.com
swiftlog.dev
www.tabmaid.com
tcwindowtint.com
teamnimb.us
thedirectsellingacademy.com
l.tlbx.ir
hiddenbbqbaremenu.triggersplus.com
www.troistech.com.br
app.tuduong.com
corretor.vivaquartzo.com.br
www.vrtue.io
www.webswaysolutions.com
www.wecstechnologies.com
wikiveg.com.br
xeqout.com
xosocitizen.com
Other domains in certificate