Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=anue.fundman.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 11, 2025
Valid Until
January 09, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:C5:D4:8D:6F:8B:AC:84:8D:74:B2:51:AF:4A:2B:1D:4B:0B:07:F1:46:31:BC:6D:E7:CD:DC:48:58:83:2E:1C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rainbowsoftware.eu
www.10mado.co.jp
11521162.stratics.io
demo3.app2.1on1navi.com
ignition.28east.co.za
broker.5f.app
www.8oktas.com
mosjid.abmsoft.org
abrah.am
entrant.accountancyawards.ie
americaoffbalance.org
www.apptitude.in
www.aquapurafiltrations.nl
www.avionics.one
barnyard-noises.com
www.baroqueproperties.ae
web.barvida.de
admin-dev.beitary.com
www.bitservices.be
www.blur.app
aurionlearning.bytekast.io
calculadoradesueno.com
www.calibratecompass.com
canadadream.org
www.canadadream.org
carlifterph.com
student.daybook.com.au
www.dfawargaming.com
www.dobrobycie.pl
dr-ai.health
www.easypersonalization.com
hr.exeonic.com
www.flyingvlabs.io
anue.fundman.ai
www.garage-door-us-co.com
app.guestim.com
hdribrazil.com.br
pf2.healthspaces.io
www.incentivendas.com.br
www.jacksloan.dev
jamesjdougherty.com
admin.jbxapp.co.za
dash.jcloete.dev
www.jointherefolution.com
jordankingsleysmith.com
inishie.k2ss.info
www.khavezon.com
kuenz7.com
shop.kuttheline.com
www.lacfirebw.com
lammpee.de
tictactoe.letitechsl.com
diagnostics-tst.liftstatus.nl
litchfieldparkchildcare.com
insights.marianatek.com
app.mesbc.de
www.metafashion.us
midknitemagazine.com
static.mockingbird.studio
api.movee.co
www.mpga.net
www.mrg-partner-portal.com
muffut.com
www.nedimhozic.com
niklas-seeliger.de
www.nivaasheni.com
notariuszbielsko.com
quotemachine.notluck.co.uk
oivis.com
cbhealthpanel.or.kr
myportfolio.oxfordclub.com
paodequeijariamg.com.br
dev.passcode.io
regal2023.paucuesta.dev
portfolioaudrey.com
psicoterapiatrinica.com.br
minhaigrejaluterana.pyske.com.br
www.riadmahi.com
www.seegull.org
checador.shieldmoto.mx
www.shinecanada.ca
app.shipwithbluewave.com
registration.staging.skipr.ninja
www.stalwarttime.com
www.storymode.online
www.tavron.net
nationalhd-pwa.tech-scheduler.com
techjungle.net
www.thisisyourlife.live
tubitvacount.com
go.unews.today
urologos.com.mx
workouts.vdoto2.com
waldron.co.za
connect-dev.weohealth.app
werewolf.events
wordseveryday.net
wots.nu
xeastage.services.xerox.com
www.yonghadang.kr
Other domains in certificate