Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=codezola.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:59:B1:E4:EB:6F:C0:5C:61:72:43:36:64:D3:58:A1:28:7C:A3:2F:EC:E2:E8:37:96:46:DE:6D:48:BC:6C:20
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
packagebuilders.com
my.1to1000.ai
lowes-kitchen-hub-test.3dcloud.io
demo.advocacy.io
ct-dev.aldointegrations.com
3d.alejandro-morales.com
kallakurichi.anbudroptaxi.com
aprenda.app
legacyportfolio.aronteh.com
arthaus.cloud
asshsas.com.co
autocitygroup.ca
www.autodca.io
link.autopasteapp.com
www.bicicouriers.com
izumi.bizoo.cloud
www.blazerstorecsgo.com
app.bolsasartesanaleslp.mx
brainsgenius.com
dev.cashfloapps.com
www.cathyparada.com
www.cazvid.biz
publisher.chytanka.com
app.cirrostyle.com
mvindustries.co.in
www.coderbot.co
codezola.com
colingibbons.com
corthy.com
cortijolamarquesa.com
d-dominguez.com
dev.dealercurator.com
digimogo.com
api.dpcfrontier.com
homologacaoameplan.drtis.com.br
dukesgroup.us
www.emilymcpike.com
emlkw.com
essentialflex.com
www.faktaoklimatu.cz
fieldhq.com
finplaninteligente.com
platu.flozom.com
sandbox.garthwood.com
www.geetsuhane.com
static.ges.digital
app.getwelby.com
www.goalkix.com
www.goliving.co
www.greats2022.jp
somos.gsolutions.ar
www.gypsure.com
www.hackmattr.com
client-area.happyorder.vn
harascorp.com
www.harosec.com
stg.hashdash.it
hashsquarelabs.com
link.hay1.app
admin.honeycome.jp
nguyenquanghuy20225010.id.vn
acadiahealthcare.ilymgroup.com
slack.indiehackerssa.com
intelligentapex.co.jp
koonva.com
landgrab.dev
www.lavanderiastilla.it
www.legendtutor.com
lightspeeddist.com
lobsterlabs.co
lozalibertas.sk
fos.ltl-xpo.com
raffle-app.madebyseed.com
mario-aleo.me
meraki-s.com
numbers.mettle.studio
pampers.mikmak.tv
csm-demo-galaxy.mosaicapp.com
meditech.net.br
clickspeedtest.ntman.xyz
nugentmichael.com
api.ophelia.com
cat.phicode.io
www.pricepoint.lk
phrasalflow.printslon.com
docs.rebop.io
app.rodeiro.com.br
assembly.rotaract3220.org
www.ruwind.de
seychellestennisassociation.sc
www.sfdnz.org
dev-simpoadmin.simpo.ai
www.spunkyfantasyparties.com
www.stanleydiji.com
www.themurrayfieldclub.com
www.tuttoinlibera.it
www.wannabet.ca
studyhub.york.org
www.yureka.shop
zenreki.finance
Other domains in certificate