Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=waysidescores.xyz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 10, 2026
Valid Until
June 08, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
56:4A:86:D5:78:74:DB:4F:91:D8:12:1C:84:4F:41:11:BA:8D:87:65:6C:81:D6:16:27:D6:83:05:16:5A:87:1B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pierrecode.nl
acchub.in
aks1n3d.com
all-about-talking.nl
altasbeton.com
app.avista360.com
www.axiomaticity.com
brew125.nl
panisto.calypsatlantic.fr
cannabiz.de
contextassist.app
iamentor.diespro.net
fatools.digitalnext.sg
admin-crm.diva.vn
www.fangjun.buzz
fanset.com.br
www.fintechegypt.org
www.finthesia.com
fusong.surf
galtonboard.app
gclg.ie
gibela.app
team-dev.goodhuman.me
www.greensign.ai
hengke.lat
www.hengke.lat
miete.hki-immo-gruppe.de
staging-admin.hubgift.ir
huellitasqr.pet
husseineid.com
www.kaprafemina.be
karbologistics.com
kisei-inc.com
kuehn-finanzberatung.de
inciteawards.lateral.com.au
www.learnvello.com
lendframe.ca
bingo-prod.da.letsdive.io
lorgeril-jardins-forets.fr
lousylabs.com
www.lousylabs.com
distancier.maroszelenak.sk
mengxi.buzz
mikeandrob.com
milkybees.co.uk
mleduc.xyz
mokume.net
www.mthunzidigitalnest.co.za
zenith.mysticalscrolls.com
auth.naijaplot.com
nakshakrithi.co.in
www.nexoplanner.com.br
bee.nordheim.digital
god-mode.office.nortic.dev
crm.nuerix.in
widget.paralegalbylaw.org
www.parentsinclusionnetwork.org.uk
order.pera.gr
pierluigicalignano.com
pollydex.com
www.punnackal.uk
putshare.me
www.rada-aludwan.online
www.rankaipilot.net
remontisofiabg.com
ridgelinegpsupdate.com
fluxa.rodrigobarcelos.com.br
db.rotify.xyz
rozicontractors.com
sanrei.link
staging.admin.seekpeace.io
solarsavings.us
sssvhunters.com
shop.svsinternational.net
sysdevsolutions.com.br
dev.taxhelper.dk
thekreator.org
www.thevalueoutsource.com
www.toilettassen.nl
tolk-news.ru
trutha.org
auth.tryquerify.ai
ultrafit360.com
app.uremgt.com
www.urgentcarenow.net
usmandroid.com
utethomasleadership.com
operations.lobby.uveye.online
vacationtime.app
www.veycoo.com.co
viajerentable.com.ar
www.viajerentable.com.ar
villeumier.com
app.vvistech.com
waysidescores.xyz
xenon7.com
www.yc-nlp.com
www.yinhe.surf
yinhe.surf
estimate.zerote.info
Other domains in certificate