Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=portfolio.tarunteja.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 18, 2025
Valid Until
January 16, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
08:0E:6B:C4:F5:52:53:C0:77:D9:24:98:9B:58:F4:F3:06:57:AD:FC:EE:6F:DB:5F:49:08:87:F7:42:F4:F2:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rezga.app
a1splashaqua.com
www.aairlabs.com
myaz.acuizen.com
admin.adwaitaeducare.com
amysalwayswrite.com
andrew-mikaeel.com
apollustech.com
apprizon.com
app.arceyutnft.com
arcodelab.com
asteroidxr.com
www.auroraworkout.com
gamesadmin-sss-dev.bagelcode.com
www.basedmathgame.com
kitchen.blintzpizza.com
cbtnewsboston.com
corporate.cipaytest.com
explorer.cipaytest.com
internetblocking.cipaytest.com
admin.classet.in
copypaste.co.za
cubanitosnft.com
danielmckemie.com
bsbw.deadlywarfaregames.com
app.dependablemortgage.ca
www.diclinics.in
www.app.digibaad.com
store.digitalmenuspro.com
dylanbono.com
easystaysyelagiri.in
order.eathh.com
hackathon.ec-play.com
emohee.com
enducloud.com
etheux.com
www.fluidlabs.xyz
android-tv.fomo-tv.com
c.foodwaretogo.com
www.frenchlinguisticsinstitute.ca
gamelist.ai
link.gdg.io
gemroniglobal.com
functions.getbeamer.com
www.glialnet.com
www.goldenwellpetro.com
greatestcitiesaroundtheworld.com
grodok.com
hearthjournal.com
www.highrow.in
eod.hlfoods.ca
hcp-dev.hosand.it
www.idroptaxis.in
reliance.invue-live.com
eiii.io.vn
jekot.net
www.karsthammer.nl
www.katoa.ch
pro.knowyourcaller.app
fitness.kreatewebsites.com
photos-studio.kreatewebsites.com
krmrsolutions.com
wallet.kryptogo.app
labzii.co
app.lek.ai
www.lemonatibeverage.com
amsterdam-lucht.lobelia.earth
www.lobiancoconstruction.com
medicols.app
tmp.morgansolar.xyz
www.my-progress.app
www.naturally-salt-poolaccess.de
ng-my.org
niklas-hauschel.de
www.nsicomonitor.com
oldasdirt.com.au
opentmrw.com
www.opligence.co.jp
orebenson.com
auth.ownhome.app
parascore.com
admin.eurobarra.pecas2b.com.br
renrii.com
app.roellie.nl
www.rostysokolov.com
sahilkassam.ca
w.scoop.tech
raal.scouthub.app
consumo.simtools.mx
portfolio.tarunteja.dev
devaccounts.tecxprt.com
telltouch.com.au
www.teunpijnappels.nl
thebeardowns.com
thinple-inc.jp
tbb.toastysoftware.co.uk
homestock.ulloa.com.ar
vax.asia
www.wanderingwithwattle.com.au
link.wispence.com
Other domains in certificate