Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mydnight.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
93:AB:B5:61:32:E3:A3:EE:D6:CB:69:8E:2E:B6:34:BA:61:06:C2:D6:6E:2B:EE:02:49:E4:A6:74:F0:4E:5C:F0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
qialex.me
qa-get.433app.com
functions.aarnuk.com
dev.abyss-of-puzzles.com
andooown.com
memberweb.angi.com
xo.ariqfraser.dev
asamidorireiki.fr
atomku.com
autobahncustomsllc.com
www.automatisme-diffusion.fr
avaclaxton.com
www.backyardoffice.com
www.bannerbake.com
app.basic.finance
app.bildungsautomat.com
labourhops4u.bytekast.io
cactusplantstudio.com
cangimar.de
proveedores.casabengala.app
www.chopdaa.com
chwan1.info
link.comminhand.com
www.cyberseclabs.io
translate.dessin.it
www.dissonantdruid.com
dogotea.es
www.drentsealliantietheaters.nl
www.drinkphytomilk.com
www.droidinfinity.com
www.eclinic.com.co
ehvoluti.com.br
www.belanjabelinji.ekhanuh.com
electrocode.de
www.emilygrote.me
www.eshaanchaudhari.com
evanhalley.dev
www.eversend.dev
www.fallah-est.com
mic-transcribe.mimi.fd.ai
freeiphonesgifts.com
garny.app
dev.gatheround.dev
globalyouthfootballandeducationdevelopment.org
auth.gobeyondmeasure.org
www.honto.com.au
www.hugomoura.com
doanquocviet20220057.id.vn
accountmanagement.imetalab.ca
invest.impactcred.com
ridog.infinitifood.com.br
love-api.jeffreychan.xyz
res.jmaweb.eu
escaperoom.staging.jwzoom.games
keikauskauppa.fi
kombibakimi.org
getzner.lealea.app
www.ledesign.team
customer.loyal.guru
www.magile.at
meocondihoc.com
metisengine.com
mib-consulting.de
www.minilemon.com.au
modality.co.nz
www.mrnchile.cl
mydnight.net
ntekcomms.com.au
www.omri.sh
kishorkumar.org.in
oronnadiv.com
app.papill.io
znapz.pensioenbij.nl
pinkforestprojects.com
populararchitecture.org
bestellen.pp-point.de
eznotes.pristineusa.com
sanvieclinica.com.br
saveforfree.org
dev.scaffcalc.com
serialist.io
auth.share-comic.com
www.spgestioneficiente.com
studentlogic.pro
symbol.tax
spraakgeneratorstudio.teameindhoven.nl
docs.tfytfm.com
www.thedatatype.com
www.thedotproduct.org
www.tiqow.com
www.torsdagsbandy.se
api.tourdepiste.com
umbrarum.com
wiki.vnappmob.com
folge.wanke.jetzt
weebsitestudio.com
highfive.xooniverse.com
jonathan.yam.contact
www.yenikonut.com
yenikonut.com
Other domains in certificate