Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=maddie.zmcguckin.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 21, 2025
Valid Until
January 19, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:FE:BB:2B:1B:B2:27:88:ED:39:A8:42:E4:06:6B:E2:88:E0:E1:A6:EA:92:85:95:9C:52:ED:81:12:D4:C3:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pharmalucentcmc.com
albaramigroup.com
www.arcogiftcardsettlement.com
asianbox.mn
austinhvacexperts.com
www.authentication-malaysia.com
bh-42.com
www.billionlights.com
admin2.bookinggood.net
sms.brassblizz.in
bridgingscienceandsoul.com
chatteriedelaroseecartlate.fr
www.citytaxissunraysia.com
www.clubedeprofas.com.br
teac.co.in
atest.cofounderai.com
businesspartner.switch-in.com.my
rotf.crescentyr.com
dagreen.in
forge.decksmith.shop
denomin8r.com
dillinghamsolutions.com
int-performance.directorschoice.com
doloresantander.com.mx
ecdt.co
elaynefernanda.com
vcards.enfochannel.com
www.ethanhighton.ca
staging.auth.falkin.com
www.fatfriday.app
web.qa.fealthy.app
app.fjor.health
www.food24by7.com
frego.coffee
app.gardenlab.io
genzbrain.com
genztrades.io
ghantasalaarts.org
hamsatoken.io
share.impactwrap.dev
incugamecon.net
www.it-wp.de
link-stanley-plaza-murray-house.jec-digital.com
jyotishyatra.org
kinaiapp.com
www.kt-y.com
docs-dev.leverex.io
www.lini.page
us.staging.console.lopay.com
map2.online
maragathamart.com
www.mepabox.it
torg.mjolnirgroup.com
admin.myopticalorders.com
www.nettex.com.au
dumplings.ninjatown.com
sdg.openscholar.in
starbucksfr.order.place
orthodoxliturgics.org
vasump.iotbit.otobit.com
www.peerdrop.com
www.plattform.app
www.primititinfra.com
prokopwerner.cz
site.pyneapp.com
bcloudcenter.qpos.me
www.rainbowgrid.online
www.redglitch.com
www.redredkid.com
renameforce.com
www.saad-ardati.dev
demo.saptaglobal.com
www.sbazar.app
ads-demo.ui.sceenic.co
schuldenhilfe-telefon.de
beta.iron-fellowship.scottbenton.dev
beta.starforged-crew-link.scottbenton.dev
www.sixteenapp.com
static.solbergairport.com
www.spacialvision.com
www.specter.mx
stormin.app
www.strukto.io
teruhisafukumoto.com
services.tinynumber.com
www.tormentedplayer.com
link-dev.tracker.fi
fire.geog.umd.edu
urbanacs.com
www.vicong.com
www.walby.com
www.wewordle.com
cca.wondergrade.com
admin.ebm121.wowdesk.jp
proto.xcwalker.dev
tunga.xminger.com
yina.org
yugeco.com
maddie.zmcguckin.com
zunotechfi.com
Other domains in certificate