Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.guitarlessonsswansea.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 27, 2025
Valid Until
December 26, 2025
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C7:DB:C9:49:21:D6:81:AC:64:49:07:62:D7:14:5C:7E:F9:19:73:AA:B6:BE:40:2F:70:55:32:AA:5F:F0:97:AC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nurfed.com
www.4eleven.net
pool.ackermanpla.net
www.agenciamidmark.com.br
agrihard.com
app.alkabirplus.com
appsdirect.com.br
www.askyesman.com
b-loom.jp
blog.beancountme.com
staging-experiences.benguelacove.co.za
cp.bisflow.io
botev-ardea.com
angular.byronbrown.dev
carequarium.com
caspersoft.lk
joint.ceropapel.mx
cdmedia-croatia.contentcard.com
www.coperinno.com
undial-test.service.deloitte.ai
block.e-onlineservice.com
www.eigopurezen.com
mobilityplus-test.enbw.com
fluxion.at
www.gferrami.com
www.guadarramaclubvoleibol.com
www.guitarlessonsswansea.com
pages.guru-pon.com
www.haidarcorp.com
haidong.mx
iambluewonk.com
iamhernan.com
web.infinity-mart-myanmar.com
inmatedeaths.com
innovatechmobile.com
www.instavocab.com
isescompany.com
www.israeltshitenge.com
isswarrajgopee.com
nextdigital.it.com
techconnect.jackhenry.com
jesusyalicia.com
research.jingjietan.com
jjvflooring.com
www.jorickvanhees.com
www.kalkicapital.com
leydev.com.br
likkilab.com
www.limousineintexas.com
www.linfieldstables.info
llamacook.com
lootlot.com
seshat.maferland.com
makapartners.com
dev29680.mana-surf.com
mate-geac.hu
mattymcfatty.com
bakerush.maxwallner.com
privacy-dev.migolink.com
milescape.com
neerajsunil.com
nelsonkevin.com
app.nextmoveshippingja.com
nfcard.shop
watch.noodoe.com
staging.link.omgevingsalert.nl
default.openreads.xyz
www.orbisforwalkers.tokyo
ear.orchestra4edu.com
outdoapp.pt
piercingserviceuae.com
popeknft.com
portorchardwebdesigner.com
raneentech.com
www.reactjs.de
rentkirkland.com
restfulmindco.com
rivianarms.com
www.rodrigofrancodelima.com.br
happy.ronne.dev
sagaraglobal.com
scribblecal.com
www.under-the-shelf.shelbyshipley.dev
stage.simplesell.com
solar2dmarketplace.com
stockbetstalk.com
www.summitto.com
taralnest.com
thecerealmixer.com
tokyo-neet.com
www.tour-pins.com
www.uniorbiketools.com
ad.venture-ist.com
vladimirgutierrez.dev
www.floater.wheesy.de
wordydoo.com
contractor.eu.wow-dev.org
www.10110.dev
you-mingle.com
zazzy-ai.com
Other domains in certificate