Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.jansahyog.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 06, 2025
Valid Until
February 05, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:E8:F0:D6:90:CC:86:63:10:60:A2:CC:98:19:4E:1C:60:38:8C:DB:78:C0:90:99:8F:87:93:49:E1:47:93:DA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nsvpl.in
storybook.a-combinator.com
www.abhisheknandi.com
newcastle.academytrial.com
albertobautistaa.com
www.alessandroluppi.it
www.alexandregerez.com
www.algon.agency
allteam.com
about.angelroot.com
cao-wpbl.appdashboard.nl
getapp.appota.com
ngsprekanchanheclass.auxswot.com
app.zolaprod.babylone.io
pin.beepcollab.com
admin.bevwerk.com
dev.bevwerk.com
home.bevwerk.com
www.bevwerk.com
bopisaempaques.com
train.championsmind.app
chasex.dev
www.chordclub.app
classford.com
sightdev.technimal.co.th
www.codesquadsolutions.com
craftyhut.com
github-tracker.creativemaybeno.dev
www.cwex.io
www.dayscheduler.ca
www.deliverabilitytester.com
www.demingsdesign.com
dentamax.in
www.dogify.cz
eadvisoryservice.com
escfolk.site
visitor-hsse.estudiocactus.com
link.explorebtk.com
fakescore.com
www.garygrade.com
devfest22.gdgsxb.fr
mosaic.mdi.georgetown.edu
app.ghumakads.com
www.gpaelevator.com
hamburgrollerderby.com
links.hashtagpoker.com
www.hilineblinds.com
jobs-demo.hoomie.online
jobs.hoomie.online
mijn-demo.hoomie.online
rastreabilidade.hortify.app
husktech.net
www.ilyaleonov.com
phillip-jeffries-prod.innotactsoftware.com
devlinks.chat.interacta.space
www.sen.it.com
www.jansahyog.in
koren.khelgame.com
mishka-show.kiev.ua
kokemustenkautta.fi
ugc-mobile.letstok.com
www.localiz4you.fr
link.makeitbikeable.com
malenboim.com
www.manixtinting.com
www.maxcramer101.com
meetnotifications.com
zero.mendeleev.fr
mentia-labs.com
auth.micommunityportal.com
16jdc.monarch.app
shop.mymoons.co
app-beta.mytruq.com
nethandicap.com
www.nguyenngochieu.info
nschurch.nsgourmet.com.br
library-dev.ordercloud.com
transparencia.isac.org.br
bhakti.sin.org.in
outtasync.in
www.parkstonemotors.co.uk
piticafe.piticommerce.com
www.ramcollegeroadmap.com
reblood.app
demo.revnt.io
www.rizgames.com
www.sakshib.com
sbfapps.de
shinepayrma.com
compras-sfbrejao.silconp.com.br
psa.somodular.co.uk
sundaydavid.com
www.superea.sv
www.szkolawerla.com
www.thecoin.io
thelogiclens.com
turissantarita.com.br
go-grpc.uid4oe.dev
www.vistademanabao.com
wortbaum.com
Other domains in certificate