Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=shir.ly
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 01, 2026
Valid Until
April 01, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:DE:CB:58:51:56:3E:26:F3:15:F3:60:23:58:AD:F0:4D:30:65:1B:C9:AB:B9:8A:9B:D1:6C:0D:AF:31:6F:20
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
redcoris.com
tasks.2rconsulting.ma
aboramez.store
aiapetus.com
www.ankitportfolio.de
bestreviewedhotels.com
www.betttermenu.com
bharathcladforge.com
www.bharathcladforge.com
bharatjob.pro
bingliu.me
borsasistanbul.com
www.grafik.brzozko.pl
calc.codist.co.uk
reg-converter.codist.co.uk
reader-dev.oneclass.com.tw
cynthiaigodo.online
www.cynthiaigodo.online
dappscore.io
delavina.xyz
www.denvolution.com
desenpi.com
dragonfly-gambit.com
drivermoney.app
api.ducking.pro
e-jonahokah.online
www.e-jonahokah.online
www.emathart.com
erp.emmaskitchen.cloud
firecheck.com.br
founditsafe.com
www.gaiageos.in
www.gendee.ai
beta.goaltrade.co.uk
app.golftimezgm.com
govendor.me
gprathour.com
www.gprathour.com
haijest.fi
hajj.buzz
quiz.imoverthinking.com
investsomeconsultants.in
jlj.autos
www.jlj.autos
www.jmatics.net
jrjstudio.autos
www.jrjstudio.autos
khip.io
klubviking.pl
kzz.lat
www.kzz.lat
localonlypdf.com
www.logiclifter.com
ls-gangs.site
www.ls-gangs.site
www.mcoli.com.ar
mehmettahsincan.com
metasky.org
meusheret.com
mideaheaters.uz
mostudiocalligraphy.com
goals.mylifehub.me
myrksy.shop
iftar.nefes.co.uk
opin.work
crm.orendafinserv.com
www.patronsinternational.com
www.potionswap.xyz
auth.prismatics.co
play.qidlr.com
quasar-web.com
cotton.ramkrushna.com
sportsdata-2025.rino.nu
rida.shera-ai.com
try-x72.shipple.app
try.shipple.app
shir.ly
makdimi-shabat.shukisegal.com
sizzly.me
subastas-tgss.es
sunquestautomovers.com
app.grayinstitute.swinguapps.com
sybaucoin.com
thebasicpsycho.com
timesbiz.com
www.tonycoconate.com
toonyverse.in
cortex.unioun.com
valorantclips.com
us2010.valyouw.com
vectorparadise.com
www.websofia.com
wegowforbrands.com
seek.whisperstones.co.uk
wordslide.uk
xinpli.com
www.yedap.com
www.zettaflo.com
www.zheer.krd
zheer.krd
Other domains in certificate