DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=giftcards.freshlygroundapps.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026 61 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:E1:DD:EA:9B:B3:7D:B5:80:9D:F0:B6:57:DE:1B:7E:E7:39:B7:8C:C5:90:77:B1:47:40:04:61:F2:2A:2E:40
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
patiencecompany.com

Other domains in certificate

musik.aereal.org
www.alsanadi.com
holmes.anyware.software
www.ashkanfaghihi.dev
asorasset.com
blancandwhite.design
kaching.boldgames.io
www.bravura.com.au
lib.casperdesign.no
christopher-marx.de
lnk.clario.co
financiero-pymes.clicqueame.com
example.co-bee.com
admin.connyonair.com
www.copyrightagent.dk
www.dealerpal.co.uk
score-keeper.derickmurphy.com
www.e-laden.de
e-pick.hu
partner-firangiburgers.elaachi.com
virtual-city.html5.emallstudio.com
enable-systems.com.mx
enterchain.online
terran.eu.org
europakommunal.eu
knowledge-showdown.evaluationspark.com
www.feedbacksimple.com
interpont.partner.felporgetve.hu
giftcards.freshlygroundapps.com
www.freshness.be
schulte.game-cradle.com
gamelancer.pro
dev-events.habitatnycwc.org
www.heidi-chocolate.swiss
share.iamhere.mobi
ilyaselaissi.me
txt.inmtn.net
gemboard.io.vn
www.jaramilla.org
kilterboard.app
www.kinush.com
minecraft.lazydali.com
auth.levelfield-stage.net
get.lifetaggerapp.com
www.mastersgurukulam.com
track.mesamarathon.com
mesbro-used.mesbro.in
www.methods.digital
www.mineral.ai
miraxr.io
mobile-lab.tech
www.moneygaps.com
mysocus.com
covidpass.neurosurgerynj.com
moebis.apps.new.de
nissanbee.com
odyssee-ecole.fr
www.opalex.net
www.orbicart.com
api.ourlistapp.com
app.ourlivespace.com
primaprix.overview.one
www.pilararaya.cl
www.psicologoscastromil.com
ma-quoter.pulpou.com
www.rainevents.eu
cloud.rideonriders.com
www.rollalearning.com
app.rundiffusion.com
research.runtime.dev
url.rxngel.com
www.shebuildsrobots.com
www.singsalot.net
smartuf.com
spanandshade.com
ndrace.sqwadhq.com vwsweeptest.sqwadhq.com
stacktech.ro
steelboi.com
www.stlswingdance.com
prueba.citas.sugos.com.ve
dr-rafique.sundiabetescare.com
bodalandoscervanos.swanmoments.com
dignityhealth.synctalk.us
taskforcetodos.com
www.telscop.com
admin.tevotec.de
main-dashboard-dev.thushiconstruction.com
link.tuvivannien.com
tyt1.com
oportunidades.unisem.mx
taxes.vacuumlabs.com
vcky.com.mx
vipgame664.com
www.vpsaisv.com
wandergaul.de
www.wheatondaycare.com
winnercalculator.com
zacharyjbaldwin.com