Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.investfar.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 17, 2025
Valid Until
March 17, 2026
64 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:50:D3:C4:78:44:34:70:6D:D4:7A:AA:46:62:8D:DE:F5:D3:97:FF:59:5C:7B:FD:68:9F:E9:69:DB:44:B1:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
plattform.app
columntocomma.abhishekrazy.com
www.ackerapple.com
www.aeterraband.com
afptest.co.uk
www.aimsherpa.com
www.alexbradner.com
nut.alexnelson.me
www.anne-mathieu.be
anthonyquispe.com
ara-studio.life
www.arbitragex.io
articlesbyalihan.com
scores-ui.askstylo.com
atmas.com.br
avkhospital.com
etichette.bbapps.it
mturk02.bcause.app
tickets.beehive.asia
docs.biomes.aw
birdville.ai
bouncecon.com
butterflyhrglobal.com
world.carterbury.com
mfe.test.casting.com
chauffeur.cityxerpa.com
tango.clau.io
cof-e.ai
www.crscript.com
this-is-real.cvivo.digital
deployminds.com
detellerloopt.nl
digicraft.app
earningcardano.com
app.eatpresto.co.uk
elolab.tech
test.emkty.com
test.enabled.world
developer.engar-net.com
flourishinvestment.com
funcionalmind.com
pwa-attendance.gajikuapp.com
georgiapeppe.com
go.getsecluded.com
pl.goldtown-phils.com
gowithme.app
greenpeace-kango.com
www.gznmusic.de
haushaltsaufloesung-hagedorn.de
hdmk.app
go.helpmechoose.app
hermonkohima.com
share-qa.holopix.com
huditech.com
inboxdel.com
incugamecon.com
www.investfar.com
chevxeron-stage-8.ischoolconnect.com
jmlasalle.com
joevees.com
kalenmiller.com
knowharrison.com
krzys.page
labelica.mx
laptopfinder.app
leaflow.me
redirect.liveombre.com
lstautoparts.app
elias.madlab.mx
mcq-generator.mahmudahossain.com
library.mckayyoo.ooo
monodeal.app
mortensen.engineering
mtom.app
www.mytubenavi.com
nlrepairs.com
notemaster.eu
www.oreedo.sa
astute.palmexus.com
app.parweb.no
install.petfins.net
pob.onl
dot-rocksdb.polkashots.io
populer4dhelvet.org
auth.staging.prosperia.health
hosrem-dev.puppycloud.com
quellcode.in
reclaimly.ai
rootlogics.com
runis.app
shoppr.co
www.slacklah.sg
partners.sqi-ea.africa
srjason.dev
login.sumamachi.jp
shop.summitmedicalinstitute.com
avicola-surcolombiana.theorema.com.co
timoxbrow.com
virtuslabs.lol
webdirectories.co.za
Other domains in certificate