Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=wijin-academy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 03, 2025
Valid Until
January 01, 2026
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:6E:0E:2C:5D:3A:52:24:B1:C8:11:68:59:BF:38:88:77:86:26:BA:8C:BF:57:E4:B1:86:F6:4A:DB:6C:4F:17
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
perku.ltd
2018.me-nutra.com
lakeshorelearning-cert.3dcloud.io
w.abacus.co
ad-teq.com
cdi.aghedgedesk.com
bms.antion.de
codensa-demo.arielretamar.com
link.camify.ayslabs.io
www.bennettsbridge.ie
www.bias.bet
bibochat.ru
boundedlinetechnologies.com
www.broadwayticketguide.com
url.centraltexas.dog
papyrus.choppy.zip
farmer.cmonehealth.org
pmgc.com.bn
lattergloryacademy.com.ng
cn.creatoradar.com
curtisfriesen.ca
admin.departspares.com
anis.djaidja.com
q2-nps.dpd.co.uk
spps107238.dpdns.org
www.dubaifreehold-properties.com
map.e-onlineservice.com
www.spinabac.engpa.com
conference.enhancedds.com
functions.fiorellapattoni.com
fonostellamonteiro.com.br
www.futureit.si
staging.getrevel.dev
lalahi-cms.hicity.world
www.iachc.ca
janekstockburger.com
jashanpreetsingh.engineer
jashanpreetsingh.tech
jitpapneja.com
carto.josesa.dev
jungleathletics.es
kitcodmcc.com
www.lab18.net
www.lachocolaterieduhautclocher.be
letsvisualise.it
app.ltearn.com
mono.lucas.men
www.lucas.men
experiences.modeka.space
static.moondropsites.com
v2022.nmnithinkrishna.me
nvinproperties.com
auth.nyxo.chat
react.misueldo.o9.cl
www.openindustrialdata.com
auth.opentracks.app
test.optimxsports.com
www.orobyteit.com
app-ua.overview.one
www.ozgurcelik.com
www.pacemaker.press
peartree.games
www.player12.co
portalest.com
qcatstudio.com
raftsbc.com
ramtin.cc
www.resizeimage.io
www.revillager.com
www.semacint.com
www.sewaora.com
www.sis-sicherheit.com
s.skiday.app
northerncity.studiossolution.com
sumai-entry.app
test.swiftscience.io
account-verification.symplepos.app
www.syncstrategicdigital.com
www.syncstrategichq.com
assinatura.taqtile.dev
www.targetier.com
theonephotobooth.com
www.toellc.com
www.tripoverall.com
www.twoowl.com
calculator.tynanfinancialsolutions.com.au
uniqryde.com
dashboard.unrealcloud.io
www.vaade.co
velcrackers.com
www.vetaitexas.com
preview.vetvise.com
victorbrun.com
app.webewell.co
www.whosnextplay.com
wijin-academy.com
yesmatecleaningservices.com
www.yline.app
brisbaneaisummit.yodelit.co
modelsandcreatives.yodelit.co
Other domains in certificate