Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=menuist.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
44:41:87:AA:BA:EC:E1:01:92:4A:EC:C4:8C:EF:96:91:EF:78:CC:FB:72:E3:84:C3:E8:C1:D9:AA:09:F7:F9:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
revenue-advance.co.uk
comparison.28east.co.za
leandrooliveira.adv.br
aeshyd.com
www.aktiespelet.se
www.andain.com.mx
www.anjahtest.com
www.apartamentodetres.com.br
www.applogics.uk
blog.ashutec.com
www.bri.gifts
go.caleitc4me.org
candyfloss.media
www.cesd.mx
suvlas.clau.io
www.coachy.com
artcleanbms.com.my
brutuspizza.corntech.com.mx
sprintinvest.creditpro.hu
www.croone.co.uk
www.cyclinapp.com
deterg.com
ettathornton.com
www.filiplindqvist.com
fluxcreators.io
test.fragangur.is
app.fullyfocusedlearning.com
www.futurecitizens.com.au
futureunicorn.in
ganaconjym.com
walls.gauranshsharma.com
uatapp.gonjoy.asia
4f-dash-stg.goodylabs.com
mg.gradgrid.org
share.groupsorg.com
hdgames.org
app.helseoversikt.no
link.hicity.world
hotelgarden.pl
icondcon.com
innovistassolutions.com
flotillascoppel.inter.mx
serhii-polina.invito.link
www.jakuly.com
javiprato.eu
www.jiwar.co
k20apartamenty.pl
keepsake.band
kingtutroyal.com
mnbflexible.limber.work
liza-and-max.com
lkw-bus-center.de
luraystrategies.com
www.malsaud.sa
maomaosolutions.com
app.malite.mediassist.in
menuist.com
mettifogo.eu
ims.mignonandmignon.com
minglwu.com
mrredash.com
www.mukandrew.com.br
www.myvineyards.org
www.store.naavo.in
sales-admin-staging.nata.dev
www.navelthailand.com
nitinmuthyala.com
links.notefuel.com
api.onyxandrose.com
www.padrone.design
www.parkerly.com
firebase.passwordlastic.com
links-dev.peppy.health
www.phepacleaning.co.za
app.pololentes.com.br
go.remember.us
riveria.app
dev.portal.savealife.scot
sekocity.co.uk
manufapp.shilaavinyaas.com
www.sj-wholesale.co.uk
skil-o.com
visualisation.solaradmin.se
sounds.coffee
www.sreecharan.in
stela.network
www.stela.network
stage.platform.stylers.cloud
www.swathimetals.com
mapa.taniafruchi.com.br
telhcz.app
www.tellaherstory.org
troublefree.ai
beta.tursido.com
upick.lk
uplinkautomation.com
www.veryme.io
www.wakeupcreations.org
xueqinlin.com
www.yafe2.com
Other domains in certificate