Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.qanda.link
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 28, 2026
Valid Until
June 26, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AC:BF:DB:3C:61:A9:8D:62:E9:AE:86:0B:38:64:97:66:6C:EC:0E:E2:65:60:3E:F9:A1:10:09:E6:BF:C1:C9:60
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
octopuservices.com
aimaopex.co.uk
akwit.eu
www.amicaldo.de
sigma.cao-gehandicaptenzorg.appdashboard.nl
atriuma.com
www.auvaan.org
www.banglafighter.com
members.bannister.coach
www.blastfurnace.com.au
go.blitzshare.eu
app.cardapioweb.com
uat.vs.ccreatorx.com
www.cgelectricinc.com
claritysolutions.com.tr
colorme.life
www.condoally.com
cyber.mn
d-brief.me
marketplace.dataleaders.net
rockspropiedades.dataprop.cl
www.davidtavares.com.br
decodable.io
dpkstr.com
experia.xyz
gdjx.foodle.su
abelsontaylor.gatheround.com
geniuspro.app
www.giovanniperrone.it
www.grupomanoamiga.mx
www.guidex.app
line.hairtect.jp
app.hamiltonsshipping.com
c.hipposrl.com
app.alfa.hubla.dev
app.hydroforecast.com
hypnoscribe.fr
www.icmworship.com.br
www.igigantidelledisinfestazioni.it
admin.ileti-turkiye.com
app.imstar.io
aula.inagep.com
www.itslearnable.co
es.jakucewicz.dev
www.jarp.one
cmaapp.kfmdmsolutions.com
blog.kgriffs.com
app.kithli.com
kitili.pro
biv-test.klarway.com
kormushka.com.ua
player.kossatz.com
www.kppchostel.org
lucasvu.com
links.lupl.com
hugo.makiot.com
matroonix.com
dev.slowdrive.mauroconte.net
intdocs.mbnk.com
taxilevis.megataxi.com
admin.meltinpot.org
misheberach.cloud
dynamic-form.labs.moon.lu
novatradesllc.com
ocafe.com.ua
www.onlymastering.com
funcs.openwa.dev
ipfsgateway.ownerfy.com
peakdieselservices.com.au
www.peopleclub.co.uk
share.playoneup.com
dashboard.beta.popshop.live
auth.primechatting.com
www.qanda.link
es.revitalair.com
rgb-farmer.com
tools.rgcrefrigeration.com
rolyrenovations.com
ruthlessbabes.ca
satishmahaseth.com.np
scotusspeaks.com
tilbury.scouthub.app
games.seeyatech.com
acceso.servipayexpress.com
www.servy.app
www.shibatastreet.com
sis-security.de
www.skedler.app
www.slingui.com
meal-buddy.spycook.com
cards.surfeus.com
www.synscape.com
teamnimb.us
www.templeblends.co
tint.cafe
tkyko13.net
app.tuduong.com
www.portal.usenash.com
veronicaelegants.com
xsfera.ru
Other domains in certificate