Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=givesomegratitude.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:56:9E:D8:1F:7C:44:19:28:23:42:A9:ED:66:C9:DF:05:12:14:0E:0F:C9:DE:02:11:3D:69:B6:3B:C6:1D:B1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rainbowlabs.xyz
1011.im
aiatelier.live
aledesigntips.com.br
antenna-ryazan.ru
aumovio-verlof.nl
psa.aumovio-verlof.nl
autonoma.lu
www.books.xyz
brieef.co.uk
bwire.shop
www.cestvs-anime.com
medinet.cirmena.ch
staging.app.clip-mask.com
parkwaysolutions.co.in
www.cosmolith.tech
solana-faucet.crablr.io
mokis-orders.crispnow.com
digilinex.com
digimall.tn
www.drsvsd.co.nz
dev.dscor.net
easewwin.com
www.easewwin.com
elkop.ee
www.elkop.ee
shop.elmaic.com
www.evanddes.com
modernadmin.evolvision.com
expressgasdelivery.com
www.flacso.org
getoraa.com
givesomegratitude.com
links.gro.care
groonui.com
grupofritega.com
high-stake.org
hmcaviation.tr
iee.24.computosonora.com
sumitsirpatna.indiandevelopers.org
iq.lv
www.iq.lv
julientela.fr
kogarahmassage.au
lampovara.fi
www.lampovara.fi
lazfashion.com
www.leros-humanism-seminars.com
likemozart.com
makarchandra.com
targetline.makena.info
www.masterframing.com.au
dev01.momentum.earth
pages.musicraynmall-capsuletoy.com
myjbay.co.za
namitfozzek.hu
noor-e-hidaya.com
www.nutriyoni.com
admin.optimal-klima.hu
paphos.eoc.org.cy
ourit.zone
hosting.stg.panda365.jp
parmardhaval.com
www.philipmaslow.info
cyclecount.pointstar.asia
www.pokoro.co
enlace-card.polipay.io
productimgai.live
www.progessio.ro
www.proget-top.it
radkoroman.com
events.rhemachapel.ca
rooted.network
www.rooted.network
spellero.com
www.stellaai.me
storydoze.com
streamerz.online
legacy.suan.fm
techful-programming.com
techful.jp
techzavvy.com
thecoffeeman.eu
www.thetrailer.store
tribro.ro
triple-four.com
usmcatrans.com
www.uuroco.jp
docs.veripaygate.com
pay.veripaygate.com
tms-sandbox.vntrip.vn
wanna.today
wayalty.com
www.wayalty.com
weasense.com
www.weasense.com
www.bo-netzwerk.wilink.de
app.yaritori.jp
zamy.tech
www.zenzy.io
Other domains in certificate