Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.profithunt.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 28, 2025
Valid Until
December 27, 2025
40 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:F6:29:24:7B:A9:2F:F9:CA:54:04:C0:0D:86:D3:CE:E5:01:0B:68:30:DF:34:AA:03:0A:93:29:57:BB:C6:E3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
queued.no
divide2d.99dojos.com
aafpets.org
pari.akamojo.app
akiesu.com
www.alexest.net
allbees.app
www.alt-phone.com
baisar.in
auth.bdalil.com
test.boginni.net
bouvling.com
feedback.braverangels.org
length-converter.at.calculatorhub.app
www.carlswerk-victoria.de
www.catsbakes.com
archive.cenatus.org
chgams.com
churchtranslation.de
www.codexception.com
courtify.io
daynotwasted.com
deerdevelopment.com
admin.digitaltradingcards.com
www.dilebon.be
dnieln7.xyz
donkleague.com
dscdelft.nl
stg.sfa.e-bukken.app
easycurb.app
www.ecothinkers.net
credenciado.essilorconecta.com.br
launchpad.fastor.ai
fit-morning.pl
aim.gamenightninja.com
dev-public.geekifyme.com
genitorionline.it
dev.getevoapp.com
events.gowrishankar.info
admin-dev.greatoaksfinance.com
www.imaginstudio.net
dominikk.impactwrap.dev
ingeniousarchives.com
insightcheck.app
reg.iol2019.com
jousselin-construction.com
www.jriegler.com
admin.jyba.app
www.katiecheng.com
www.kevinberridge.com
koenigseder.me
wahlen19.landbote.ch
demo-feriavirtual.lapieza.io
www.lesliepan.com
app.lettershop.fr
newtab.liao.dev
linemed.it
maby.app
mariapialingerie.com.br
www.markgoodwin.dev
www.maxwinpharma.com
mediaprime.it
miku.shop
moneyrebase.com
www.mtom.app
novaio.academy
sudoku-fighter.offroadlabs.com
ozgunozdemir.com
dokoiko.dev.palames.com
www.parlefrancais.org
referrals-sandbox.percihealth.com
www.shop.picaround.hu
en.corp.pirika.app
pixelwavemedia.io
www.pixelwavemedia.io
www.prisongothic.com
www.profithunt.co
quickplan.app
www.rapron.com
booking.samasportshub.in
www.segments.app
app.senergypower.com
www.siware.dev
vsi.internal.skunkworks.ai
www.splendy.app
www.sugarnroses.com
juan.suitefeedback.com
tanveejobs.com
www.taxquarter.com
www.teamcollect.net
screenbox.terron.me
thehoods.app
thera-automacoes.com.br
refer.timeoutiq.com
developers.beta.trexity.com
www.verimail.io
web.viewdigicard.com
vylaris.com.ar
yakyim.net
www.yume-app.com
Other domains in certificate