Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.hipotecado.es
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:24:FB:F2:9F:2E:AA:1E:9B:78:B4:A5:72:C2:8E:E9:FA:D5:76:51:7D:0C:0D:16:5A:2E:FB:23:F3:AD:85:50
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
powem.co
abastim.com
www.agitadoresparabebidas.com.mx
altlas-app.com
amaiziapp.com
www.aospguru.com
order.arbatravel.com
beller-malermeister.de
berantasbullying.com
depasquale.betheshow.media
blackbuffer.com
www.burghof.it
calendarschedule.io
chekhov.io
forme-parent.haiidev.co.kr
coffeecreative.au
colivery.mx
video-editor.v3.contentfabric.io
app.dadabase.com
www.davidmanzano.es
devfest.pl
webportal.digi-dein-digitaler-bauassistent.de
dominic-tobler.ch
link.dpoint.vn
drvassii.hu
g4rs.uc-bcf.edu.ph
elasticpotential.com
electcell.uk
www.erinnbarry.com
nutri.esportesnabaixadasantista.com.br
www.ferienwohnung-hohen-bogen.de
auth.findnums.com
fjbatresv.com
fm-next.com
forrowithmatheus.com
froozaboozaloyalty.com
georgelbs.com
apps.goodsalliancegroup.com
forms.guest-connect.app
www.mijn.helperapp.nl
henryado.com
himchistka.online
www.hipotecado.es
spellingcee.hopku.dev
ifbsupport.com
imf-counseling.com
kostiantyn-vita.invito.link
istherestillwarinukraine.com
client.cas.itopia.com
get.jcu.app
www.lalimit.de
lauraandaaron.ca
loplist.info
lotuswages.com
lumeaimperium.page
solicitud.luxeryprime.agency
staging.madprops.app
manindra.com.au
builder.markangelohernandez.com
app.mhc-instalaciones.es
mistergreen.fund
mkpropertyreal.com
n83studio.com
nahoo.dev
staging.ncbt.us
www.neuerechte.org
newton.best
okitech.com.au
okven.com
parazone.eu
personality-type.jp
persuaid.me
prompt2base.ru
kellyxv.rcinvita.com
marinaxv.rcinvita.com
senthilk.dev
sc-research.serrailabs.com
seller-dash.dev.setscale.com
www.shopfor.app
hkraft.smartby.dev
proxy.sokuyaku.jp
prod.spaq.app
www.speako.io
demo.strings.ai
laneline.swimmetric.com
www.symmetry.la
noodplan-bv.testta-tools.nl
thaidang.net
theguptadhawal.wedding
www.twentyonepilots.wiki
twixlab.com
basira.unleashed.work
webapp.master.v7emp.com
id.vadimj.com
www.venturify.xyz
vitolacigar.com
wheelofnames.biz
xelofast.com
app.yadada.com
yuridigitalmarketing.com
Other domains in certificate