Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=myharkness.harkness-screens.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 28, 2026
Valid Until
July 27, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:6E:F1:EE:28:9C:18:72:9C:5C:9F:A5:3D:95:6A:DC:DB:60:72:50:06:2C:C5:29:3E:5A:92:4F:B5:A3:45:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
paypingapp.in
2coool.net
o.324.ing
stonephone.5sft.com
www.al-ge.com
algoturtle.co.in
app.amihomecare.com
apnasahyogi.in
express.arque.app
balanza.ai
beatstrings.com.br
www.biehler.co.uk
meerdervoort.bloqify.com
dl.bznav.com
studio-feature-dev.captego.com
codertipster.com
deepvelop.nl
fos-i.dev-ltl-xpo.com
app.dreamedu.xyz
eko-zakatek.pl
elicithub.com
enher-green.es
app.fashionkanvas.com
sb.share.fintelli.app
fitgirls.me
www.fixo-app.com
app-dev.flutr.io
freelancerates.ca
glitchcom.net
report.greentim.com
app.griffinwallet.com
qa-petpooja.gupshup.io
myharkness.harkness-screens.com
hillsboroughclassaction.com
hkofficial.in
horasync.app
hushlisamiller.com
www.ik-friskole.no
intekelectronics.com.tr
jagtog.co.za
tour360.jammedroom.com
kavobarek.cz
kymsote-dev.kesselrun.dev
kleenwhipz.ca
kushaljain.de
ldgcode.com
button.rinkeby.like.co
lobotailoredsuits.com
mattercatalog.com
www.mikeweaver.dev
idealrepprofile.mindtickle.com
www.mobiaccess.net
moirarte.com.br
mojob.co.il
www.mycodestyle.com
share.mypetworld.app
admin.myresservices.com
nepalaiconsulting.com
nichtdesign.com
my.onemoretask.io
www.opencollector.co.jp
openeddata.com
berkos.parallelstudios.co
pieterpretorius.com
www.pixel-magic.app
prachaar.net
princepatel.dev
wasi.qallta.com
qr.quintedge.com
rewardaether.xyz
roommaroc.com
qa.portal.s4biz.co.za
www.sandiewisbey.com
seeportapp.com
serkit.co
showhy.ru
shreesairam.in
sinavpartnerim.com
www.skstudiodev.com
link.smyk.com
soldiersofwealth.com
www.solidary.gr
erp.sudovege.net
dev.superordinary.v1.test.superscope.ai
swiftpointgroup.com
synapsai.pl
techtoall.org
bridge.ternality.xyz
tgfionline.com.br
tocera.io
towerwatch.gg
tr-cubed.com
tsuitate.info
invitation.vappi.fi
venueqs.com
versaoalpha.com.br
crypto.vkng.dev
waitaminutedigital.com
www.wari.jp
www.wrappissimo.it
Other domains in certificate