Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=jasonshaw.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:AA:7D:8A:E7:BA:0A:A4:32:F7:FE:A2:D3:C5:24:19:9E:CC:C0:2E:A0:A4:47:CB:93:32:1F:24:A0:6F:EC:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
recorder.video-recruit.app
aegisgroup.software
antichess.net
liff.anychat.tech
appworks.sg
www.autobms.mx
www.baam.dev
barcelonamap.eu
battiker.com
billify.space
binarka.tech
auth.blipbillboards.com
www.boxr.fit
brandifygrowth.com
bronco.ph
www.budgee.cz
planning.burk.dev
www.by-edoardo.com
canadianicleaningcompany.ca
live.chandertaler.ch
www.ckr.dev
weblab.fotoastro.com.do
creativeincarnation.com
dbslc.com
demo.divisi.app
djvibes.org
app.ebeltec.com.br
www.emergencias.pe
admin.enrichdlp.org
estudios360.pt
www.farmersfireins.com
samhoud.felixxgroep.nl
flickin.app
a06d.foodle.su
forumiptv.tv
www.gifteez.nl
kent.graduategowning.co.uk
www.grandmassewing.com
grantholzemer.com
gtfit.store
www.guiders.pt
html-sample.com
jp1.ihhsfair.com
bodytechbosque.impactwrap.com
www.inspekhome.com
irfanlateef.site
mia-chatbot-prod.itxi.aero
jasonshaw.dev
jdsareault.com
maps.joyworks.me
karinaagaian.com
www.karma.systems
auth.karoteno.org
leadfi.org
www.leadfi.org
lsla.work
alpha.solstice.lunarworks.co.uk
www.magicmirrormallorca.com
maheshwariproducts.in
www.maheshwariproducts.in
www.mantraroom.org
coach.play.medeintegra.app
ai.mibot.cl
pseudo-web.minna-no-ginko.com
multristan.fr
www.nomansskychef.com
demo.okulevdebaslar.net
sans20202021.ondagoapp.com
dev.opshelp.com.br
wallofinspiration.oru.se
otovera.net
philiptamaki.com
pizzariaimigrante.com.br
playacemaster.online
bada.ponorder.kr
ins.pricequestion.ru
docs.prospectis.immo
reclaimexcellence.co.za
www.red-cat.net
runes.dog
palace-staging.scouthub.app
get.shape.care
shopq.co.za
showbook.com.au
siluana.com
softcap.no
spacesandcreatures.com
furimun.spwn.jp
supriyamohanka.in
www.supriyamohanka.in
tapytapy.com
cpu.tfsglobal.com
booking.themelodyclub.se
top1p.com
travelerinsider.com
tte.tv
union-bauzentrum-roehlinger.eu
vendi.ly
virtomaster.com
www.whatthecost.com
Other domains in certificate