Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.ajwd.media
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 11, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
52:9B:42:31:A0:91:4A:36:07:06:AB:E0:AA:66:35:28:97:60:2B:08:15:A3:9B:80:2E:18:5B:14:61:BF:B9:04
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
quantumjosh.me
www.ajwd.media
app.ambii.com
jumorap.astraty.com
skill.aurorasensor.org
azuretraining.ie
www.basoom.cl
app.casadoarroz.com.br
www.celestialexim.com
app.chirpyplus.com.au
chonksoft.fun
coptersite.com
corona-trackings.com
app.curious.com
www.djfw.uk
www.dmarcellolandscaping.com
www.dmystapp.com
prav.drivevesta.com
kanyakumari.dropstaxi.in
easypaylk.com
www.econbg.com
admin-v2.emporix.io
equipocalido.com.ar
eren-bal.com
escaperoom-milano.it
app.escuelamanuelbartolomecossio.com
app.finequities.com
wertermittlung.focusberg.com
fossrea.org
www.fracture-risk.pl
happyfox.games235.com
knifesmash.games235.com
monstersup.games235.com
produtos.graficainova.com
www.gryso.com
www.hmz-epok-epok.com
us.hongmoe.com
ctms-qa.hu-care.com
app.iam-vegan.com
uat.app.osp-activation.idosoft.dev
ywc18.ywc.in.th
t.ivoy.mx
jiroplay.com
www.johnhaskell.com
jordinebot.cat
lead.kardbank.com.br
checkout.stge.keap.page
kumarelectricworks.com
beta.m.x.loplat.com
mayiai.co
dev.tip.mcjel.com
www.muslimlite.id
www.mpt.my.id
www.newgalecoastaladaption.co.uk
nixallover.dev
nmoverseas.com
chasdisalomon.org.il
paavai.org
www.perform-all.com
jeansjournals.phros.ca
www.planle.de
psac.politraq.com
www.randev.com.ar
rebat.org
l.rpphyogo.org
rubysinclair.ca
www.saikyo2dome-tbate.com
scanshot.app
teams.scrumlaunch.com
www.sergiolgac.com
softsynctechnologies.com
www.stardardshop.com
www.ste-elektro.de
dev.stellarjaysoftware.com
stickotext.com
www.events.streamlinedcampaigns.com
bodasiguenzaordonez.swanmoments.com
swiftclick.com.au
shop.tacotote.com
app.teahouseai.com
tennesseecollectionsatty.com
www.theaddstudio.com
theshapeofrisk.com
www.tiagomlbrasil.com
tinode.net
tosauth.tosgame.com
app.traggr.com
tool.tuduy.com
auth-dev.unarmed.io
unnifi.com
vijaybhalothia.com
unocss.vinicunca.dev
www.desa.wasdlabs.com
www.websitebridges.com
blog.weiming.me
wki.community
teacher.wordandlearn.com
referral.zerolim.id
zinc.video
portal.zym365.com
Other domains in certificate