Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gainz.karma.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 28, 2025
Valid Until
March 28, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
33:F5:67:51:F0:0E:BC:B3:50:D8:AE:24:71:7A:C2:8E:62:40:15:EB:03:5A:DB:DE:6F:F5:01:57:45:0F:85:15
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
printlabs.no
www.printlabs.no
www.aepno.ru
mestredamontagem.app.br
www.aravindhrajendran.in
www.arupemergency.info
ateliersol.ca
staging.baably.xyz
admin.behaviolabs.com
bibleglen.com
bonviewchurch.org
audioguide.test.by-d.art
isabella.carlopezzotti.ch
cartel72.com
clubpurple.com.br
blacktonez.code316.dev
kitametam.com.tr
www.hosisler.com.tr
www.kitametam.com.tr
lnenergy.com.ua
scrm-app.daikin.com.vn
www.consule.sg
www.corterve.com
reserve.parlour.crocklytech.in
cruz-foge-das-loiras.pt
cryptiks.com
customtypingcoach.com
chordtoner.dantompkinsmusic.com
cs-study.deepakpandey.in
didacta-apps.com
dienstwerk.solutions
www.discoverycare-transportation.com
varejos.dogaopet.com.br
eimc.site
ekkoclub.com
esilar.com
www.esilar.com
confirm.etisalat-tv.com
fastgoogleseo.com
fixliya.ma
gnote.graphosai.com
dev-email-builder-js.grigtechnologies.com
www.hexkoda.com
www.hmn.to
html-vault.com
idraulicoafano.it
izidcars.com
gainz.karma.net
www.kinderuitspraken.nl
www.kogame1.com
kollectiv.co.za
konwerternia.pl
korrektsiya-zreniya.net
rent.lankainflux.com
lhoussine-achou.com
ligalpfi.online
locassi.com
app.lwill.app
magaslak.hu
m.makedev.org
matthaddon.uk
meanregression.app
www.mikaleta-smartlockers.com
mitchkelly.co
monid.app
grooming-manager.mvincent.xyz
welcome.nritaxconnect.com.au
oldmissionwoundcare.com
www.oldmissionwoundcare.com
physiokea.com
pimmia.pt
psycheatlas.org
queuedin.app
reachmanagement.se
renotify.online
reppal.app
droop.revoltage.io
www.rotaract3142.org
sandstorm.pro
sanskritifoods.shop
scorekeepr.net
tsena.serasera.org
www.shinigroup.com
sidrith.site
solaytech.gt
swadeplay.buzz
thedanceflooradh.com
www.thevaloan.org
thevibium.com
tokalive.com
www.portalsocio.trendsgr.com.ar
twistedtechnology.net
ungatschyourself.org
upsurge.ae
www.w-ww37win.com
www.w-ww59g.com
www.zenergyteknoloji.com
www.zerocog.com
zerocog.com
zibunmedia.net
Other domains in certificate