Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=liora.ing
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:36:51:D3:5B:1A:60:05:F3:61:F5:1A:81:36:16:AE:EB:18:7A:53:EC:09:7B:45:32:2B:74:E8:9E:31:49:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pixello.tech
360.lenarge.com.br
aakarshit.me
www.anidealai.com
edu.aplandev.com
www.appnificent.dev
app.arcezio.rs
lointek.ate-app.com
www.aylantechnologies.com
www.bahrihantorpil.com
bail.sb
reflektai.baltek.net
www.beg4cred.co.uk
www.belkoentreprenad.se
billgini.com
www.boathouse.group
texting.cleod9.net
admin.stage.connectsx.com
web-sporter-frontend.staging.uvt.delcom.nl
www.delivser.com
www.ekos.ee
www.eportfolio.one
alpha.evs.ac
app.facturabilidad.mx
fin-rom.com
erp-omjewellers.finshakti.in
fj.uz
flytinary.co.uk
fourstor.in
genuinewoman.org
teamtravel.gododgers.org
www.hairmatik.com
homeofficeenglish.com.br
howdeep.app
demo.imaginecodecreate.com
firebase.invoice.pro
ivski.rocks
www.jjcinematics.com
share.infinity.joola.com
jpegcompressor.site
www.kevinneyerdev.com
koroglusoft.net
labsmp.net
liora.ing
www.malaysiamounjaro.com
mdexpert.ai
www.mfit-monki.pl
miccca.jp
monikivelloso.com.br
www.moojkasheer.org
witikkolab.morgansolar.xyz
www.motormatik.com
mozmi.co.uk
roadcar.mugt.info
mungra.in
www.observatoriocinegetico.org
crypto.ogenerator.xyz
www.ooho.co
www.palabraviviente.net
fosas.poplab.mx
www.pothigaisolai.com
prego-app.golf
profiloscope.fr
propulsehealthcare.com
ptcapao.pt
www.radiantholistics.com
rentkarma.reviews
rozetacreations.com
demo-desk.runport.run
rybot.eu
www.seralearning.org
shiatsuelma.com
slputki.fi
www.snoozegoose.co.za
www.spinachsanta.com
webinar.squircleacademy.com
stichtingeemsvoord.nl
bytecraft.svkdigital.com
glowaura.svkdigital.com
urbancafe.svkdigital.com
szarik.ai
firebase.techdroid.pk
dev-maai-app-uitvoerder.techmaps.nl
clinica-c-revert.timp.io
infinitypilatesoviedo.timp.io
pilates-sierra.timp.io
pilatesenunimpulso.timp.io
tulkki247.fi
mta-sts.unchartedrecords.com
unverpackt-app.de
guess-the-password.vicbarbu.io
app.virtuallyengaged.com
www.vvkzipper.com
calls.wakeflow.io
bi.waylogtech.com.br
withoutaccount.com
xemquemoingay.com
www.zalwora.ae
zedsoft.co.uk
zilo.work
Other domains in certificate