Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=jarnemyr.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026
62 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
84:EF:58:DA:D7:76:A7:D9:AD:F2:86:A1:81:B7:F5:EB:BC:45:F5:3B:AE:18:3E:BE:CE:92:C5:7E:A1:60:98:E4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
reachxr.com
www.abapps4u.com
akshaysarode.com
www.anchormannsharma.com
www.apprender.club
www.autofrc.com
avenidaveiculosptc.com.br
www.bamboo-up.app
market.byapar.app
tampabay.column.us
merchant.lng.com.sg
coralenc.com
www.crewwho.app
admin.crscript.com
sorry.doorjames.com
draw.ehsaanstream.com
kiosk.emanageone.com
www.ethiopians.dev
www.exalt-tech.com
register.ili.expanse.co
admin.test.portal.farmote.com
www.fearless-security.org
finometr.finance
www.followuson.in
foodfinder.app
cams.frankwatching.com
georgepadilla.dev
algoverse.grodok.com
sdk.app.guidde.co
www.hardeepsinghmehta.com
adminsite.himalayacrackers.com
www.hodostays.com
www.icondcon.com
imjkim.com
service-tracking.itsacom.mx
www.ivorcompany.com
jarnemyr.com
www.jic.app
webhook.jobsamuel.com
skynet.kioscodeseguros.com
www.kivimyllari.fi
farid.klikada.com
www.kombucha-lab.com
laragardin.com
luis.laug.ga
adm.linvix.com.br
dev-kubota.lo-beam.com
www.ltc-rentals.com
www.ltcpowersl.com
authorize.mantapoolthermometer.com
functions.mantooq.com
medeappe.com
www.mentat.so
admin.mitiendauabcs.com
www.montagekc.com
moodeler.com
mountainpinesplumbing.com
www.myfantasynumbers.com
www.natashamitchko.com
neyastudios.com
www.nitramis.com
nodcaps.com
v2-guest-dev.nofilterbroadcast.com
www.notquiteamonad.com
petziferum.de
portaldoem.com.br
queue.postscriptsms.com
powerdigital.au
synchtify.prb01.com
www.primepacker.com
promp.com
pukpuk.app
www.pythoncodeshare.com
qualinsys.com
replaylisting.com
resontone.com
www.santtai.com
shdtn.com
app.shuttlenomix.com
vocuswb.smartspeak.ai
admin.socialmotion.ca
socialteetime.com
sol-airenvironmentalservices.com
sorbelo.com
www.sortdate.com
www.sourceddx.com
raidersmx.sqwadhq.com
studiogrosser.com
bodabenitezpaniagua.swanmoments.com
tacostudios.com
glass-pwa.tech-scheduler.com
texasxp.com
viewversion.com
www.vishalgulati.com
login.vkusnyblog.ru
www.voxaesthetic.com
caring-box.xeus.dev
3rcapital.xptoconsig.com.br
yiff.my
yuanshize.com
Other domains in certificate