Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.ligazapata.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 21, 2025
Valid Until
December 20, 2025
37 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:82:BA:76:8F:A7:C3:51:42:58:A7:30:65:CD:4F:51:47:8C:B8:91:43:58:F3:C6:C9:F4:5A:B7:F1:39:3E:20
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pdfquickfill.com
bnq-test.3dcloud.io
401kbreakdown.com
astradevlabs.com
ops.avis.co.uk
galaxy.bazaarse.in
sam-login.beep.dev
bitkin.net
www.blackfin.tech
admin.boardscreen.fr
bonku.com
www.cardoctorsllc.com
test.chewitanddoit.com
www.colour-merge.com
www.dawn.ad
www.deciml.in
www.denizozgen.com
text.denkizakana.com
flutter.devdory.com
digichuminfotech.com
drsoumyamukherjee.in
ds-meble.pl
www.elizabethandevan.com
angular.elrafael.net
vendors-admin-staging.enchantchristmas.com
eroticaudit.com
www.evertrustsolutions.com
dev-videomark.ezcast.com
homthubirdsofafeather.fessior.com
www.forrosailingweek.com
freerangekids.org
gaduskoding.com
swabapp.giftoflife.org
dynamic.haloar.app
nkw.harisumiran.org
www.hartmood-music.com
www.heyskippersale.com
t.icolorful.app
kebab.ilijaleko.com
portal2.insyncapp.io
itkloud.com
clarang.jerryzhang0.com
jessestrodefanclub.com
www.johnhofrichter.com
elitecbt.kafeyangasli.com
verify1.kavkrishapps.in
www.kieranwright.dev
kontomo.page
lancastcv.kyclopsradio.com
dev.cloud.leadautopilot.com
www.ligazapata.com
www.loritolab.com
maneuler.in
www.mantrascrubs.com
mapletics.com
marcusfi.com
www.mccadefreeman.com
scagentbo.merchantgamewallet.com
metanoiahr.com
millabox.com
mongoliancoins.com
www.mycoloringpage.xyz
nataliyap.com
nextcoreai.in
news.nikmoores.com
www.notfaqs.com
www.nutimi.com
www.p4f.io
www.paincho.com
fyt.pbj.live
links.peppy.health
revdar.net
secret.rooms.cx
desguace.salassuministros.com
appgo.shopinnapp.com
sideprojectpro.com
qr.skillexchange.space
sqr1.digital
viewer.storymight.com
www.stg.study-habits-dh.com
www.sydneytsunami.org.au
www.tadams.dev
www.dev.taxhelper.dk
teamstaff.in
www.telepatiq.com
fast.terkwood.farm
montessori.tokapp.com
www.ttly.co
app.uzhnet.com
vdenboer.com
staging.vendoo.co
www.voicelift.co
css.vyeron.com
www.wakethem.app
invite.wemoscooter.com
woodysee.com
dev.ylboisestate.app
app.yogeshkhere.com
zachdenney.com
shuukatsu.zacherl.dev
Other domains in certificate