Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=stitchandshare.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
68:9F:B4:8D:FE:3C:F2:A0:D7:72:09:8F:0A:63:25:59:1C:AA:8A:CD:3C:44:5F:FC:8C:07:5D:A9:E3:4C:75:F7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ptown.app
1001apps.tech
www.1tuner.com
my.abracadalo.com
dev5007.academap.com
contact.adxsdk.com
www.aelab.my
afdi.de
raboag.aghedgedesk.com
upload.amkmicrofinance.com
angjinsheng.com
illusionrun.anifestmalaysia.asia
connect.articad.com
credenciados-botafogo.bepass.com.br
www.bettoday.com
www.bezkomentare.com
chat.bookingcare.vn
manager.brewbill.com
staging.manager.brewbill.com
truck.brightq.com
uat-ops.campayna.com
www.chls.me
www.cloudappit.com
coaxdes.com
codeforfun.com
mw.creditea.mx
delisles.com
dynna.me
pls.aiu.edu.my
app.ekselio.tech
engelkapital.com
demo-lite.finlup.id
www.followlives.com
foru.fan
app-v2.getfluence.com
www.golden-needle.dz
goldserviceid.app
hc.nahcon.gov.ng
www.grandmasjid.com
admin.hagakurenohsamba.it
app.hazira.com
tinnibot.hearingpower.co
tramthaovy.id.vn
qa.idealcareerpath.com
www.ininfinite.com
stg.innovators-career.com
www.irrigate.com.br
www.jonnygonzalez.dev
www.jun-cosme.net
cocomo.justbit.it
keyaccountmanagementtraining.ie
musicvisualiser.kieranparanjpe.com
kkgv.net
klimentowicz.com
lafraise.app
lasthopeguild.com
mertgurer.com
michaelbakerportfolio.com
www.mstconline.com
mudanzasonline.net
mylastsunday.com
bienvenido.mymoons.mx
pic-win2day.mentor.neccton.com
nhahangmaisonvie.com
e.o2o.vn
osdifa.com
demo-docusaurus-blog-reactions.ovisly.com
perfectgifting.com.au
photio.cl
populartradelinks.com
psgltech.com
install.publigo.app
asogans-admin.pujasweb.co
www.reinholtzresearch.com
robotdepingpong.com
manual.runloop.com
app.scoolio.de
www.seasonleague.com
secondmentor.com
moj.semilac.pl
sharetuk.com
admin-sitandtalk.sitgroup.it
survey.smaki-maki.com
dev.spellbinder.co
stitchandshare.com
bodacivilbarahonacastillo.swanmoments.com
play.taptapwin.co
theonewaytaxi.in
fsg.minhacentral.trausedu.com.br
tools.trinityinsight.com
valenreyesnutricion.com
villamadonnadelbagno.com
closet.vitanewstetter.com
wavy.io
wikiveg.com.br
app.wotimo.com
wrship.io
www.yollevotuscosas.com
yutaok.com
eli5.zksync.io
Other domains in certificate