Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=locator-tracker.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 22, 2025
Valid Until
March 22, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:51:4B:13:6A:E3:91:42:D5:22:0D:4D:4A:EC:77:CF:45:2B:6F:9E:86:98:F4:59:B7:A1:8D:9D:7E:5B:10:7D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pombo.dev
10roads.dk
alphagainz.in
www.alphazbrains.com
www.amaltjose.com
anjodato.nl
artsko.art
avy.ink
www.basementsnmore.com
beadapp.io
admin.bestbuymall.pk
rqam.carnotinnovations.com
staging.lernwelt.chapternext.de
chungtacungtien.com
study-type.class-saathi.com
login.clubealuno.com.br
link.coachhub.com
es.covidiarymath.com
nsl.cxipl.com
dilondon.co.uk
routematrix.dpduk.live
labs.analytics.edvolution.io
filmapp.fimmigrm.com
staging-app.getcaddle.com
humano.tech
icantgotothegymtodaybecauseofclimatechange.com
igormgoncalvs.com
qualification-id-aghc.input4you.be
andri-tetiana.invito.link
ioc-consulting.com
cpfamily.jassy.in
www.jhtechllc.com
policies.joinpanda.com
app.just.insure
kingbox.jp
kintos.mx
measure.lascade.com
gymbud.levelupatlife.com
locator-tracker.com
www.luisvv.com
task.maksellent.com
mint.martianpremierleague.com
www.math-util.com
mattholy.com
dev-wellness.mersive.com
admin.metsights.com
curbside.michaels.com
mickdewaart.nl
www.miri-graphic.com
connect.mocklets.com
n06.dev
www.neespa.ca
noahynoemi.com
nobleledger.com
link.ofoghlu.net
karur.onewaydroptaxi.co
theni.onewaydroptaxi.co
arta.onthe8spot.com
pauline-et-pier.re
pcllogistics.in
app.ph2.io
holdem-simulator.pihat.com
storefinder.pizzaxbloomington.com
pnder.net
app.polylauncher.com
staging.ratiolator.com
play.rossdaniel.com
s44.events
sachinreact.com
www.sanlamprivatewealth.com.au
seekersandadvisers.com
serpentcomic.com
seryo.com.mx
www.sghindi.com
www.shahulabeeb.com
shopreal.app
shopturn.com
icheon.smsb119.com
kontrollor-test.soppkontroll-app.no
miniapp.sorafinance.com
sort.dog
spectralfingerprints.com
spokesandneedles.com
files.streamposts.pro
api.subdrop.app
svsoftware.in
tadalands.com
pipecube.games.tetherstudios.com
thegta.in
tigerfacesystems.com
trioyard.com
www.tsunaguba.co.jp
turkuma.com
ucsdces.com
visit-bamyan.com
dc.vnetwork.dev
link1.vocepede.online
www.void.fail
applink-culpepper-orders.waiterpro.com
zrubkrahule.sk
Other domains in certificate