Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.interactiveworldschool.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 11, 2025
Valid Until
January 09, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
86:46:C7:91:C3:5F:99:3F:D4:A7:DD:D1:8A:79:7F:C2:47:E2:29:D5:E6:E4:EC:11:85:B1:2F:7A:D8:35:CB:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pengkai-hsu.com
shera.aimcomely.com
aimo-sys.com
aktivenotrok.si
www.angelapastorinteriorismo.com
kuenten.avdis.ch
staging.awesometechstack.com
rad.bambu-mobile.com
biddo.de
samplestorage.binsto.com
bizcatpro.com
solitaire.clip.fish
www.cloq.com.br
timedme.co.ke
portal.codra.se
coffeezinho.com.br
tou.valu.com.eg
educadoras.contigojuegoyaprendo.cl
coquins-game.com
www.daunao.com
kiosk-customer-web.stag.self.dinii.jp
offers.doukani.com
dover.consulting
dpxp.io
dryoga108.com
www.dubu.fr
www.edelsah.com
www.peaci.edu.ph
staging.egab.co
app.emgcompliance.com
mes.empirich.com
farefirst.com
my.foleon.com
a07n.foodle.su
3dchess.games235.com
app.gamestarplus-dev.com
gateway-english.com
www.geotecenergy.pro
admin-staging.getmobly.com
messenger.ghz.rocks
greenerpastures.io
guideholidays.in
hallmark-ai.com
www.herrerogames.com
hipoia.com.br
idcraftsolution.in
www.interactiveworldschool.com
irilleum.com
dev-l.jcuapp.com
www.beauty.jimba.cloud
www.loanwolf.club
genome.beta.loophealth.com
luechaithaimassage.nl
michang.m1studio.co
macecek.eu
auth.mantora.io
secretsanta.mattpeskett.com
www.mementr.com
www.mondadorisestriponente.it
s.moovup.com
eu-app.murallink.com
red.mysprout.cloud
shop.net.ne.kr
unisex.newemperium.com
www.newzgator.co
www.noahgels.de
nsjaisoor.com
hawthornecoc.ojeelabs.com
www.onframefilms.es
onionknightlab.com
lists.passoka.com
mwm2.pensioenstartpunt.nl
lutheran.plusscommunities.com
praxwallet.com
princetonwrestling.com
www.quiktalent.com
qultah.com
www.red10x.com
www.redballoon.it
icabs.tfa.rentokil-initial.com
www.rorymm.com
www.sandeep-yadav.com
sansclouds.com
miislamiyahkalimukti.sch.id
schultzsteven.com
www.securetix.app
plan.sehub.net
parents.sentral.com.au
shahid.codes
kakeibo.shigema.xyz
plans.smokeyloops.com
starttakingaction.com
swenssoftware.nl
tarikvaljevac.com
theadventuresofmrdiapers.com
unfurl.network
vislijst.nl
links.vitag.io
zahl.wanke.jetzt
activate.webstollen.de
Other domains in certificate