Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=scientist.morwils.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:1A:63:8F:54:FA:43:22:BB:AA:28:61:02:06:2E:FF:63:E5:55:5B:10:C8:35:A4:EC:CA:6D:C6:01:9C:C5:98
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rezylist.com
allergy-rheumatology.com
analyticartisans.nl
anycodegen.com
admin.apipikado.com
appfactoryto.ca
my5kworkout.arborapps.io
admin.arkabia.com
atcopedia.atco.com
www.benzvikler.com
test.admin.bezwaarmaker.nl
bmeguard.com
www.c19tracker.net
www.caerulusvision.com
renderer.castsports.tv
cfe-portal.com
www.changshengrealty.com
auth.consteelsoftware.com
de-uitdaging.org
decidebetterdaily.com
dnmmaintenance.com
evoke.digital
demo.fairchain.art
vos.fecg-speyer.de
api.fello.in
fenwickelliott.io
ffai.llc
fl-swimming.com
www.forodeescorts.com
dev.url.gdsc.app
indi-psychology.org
www.inhr.dev
isdanni.com
www.johnson167swimmingpool.com
www.jordanmars.dev
qa.justjestb.com
kalajcapital.net
dindigul.kishoredroptaxi.com
dashboard.klickkey.ai
auth.lectorlive.com
liberalpartyca.org
shimane.linx.live
www.magicdocuments.com
consult.prod.medeintegra.app
www.melike-mesin.de
worldcup.mevu.bet
mindthegapworld.com
www.mindthegapworld.com
www.mirasasse.com
monroe2nyc.monkview.com
analyst.morwils.com
scientist.morwils.com
mumsnmidwife.nz
myst.today
hexdate.nabilamerthabit.com
pic-abdefraud.mentor.neccton.com
pic-skywind-itg.mentor.neccton.com
newbo.in
cdn.nexity.dev
orders-tandoorizone.nextorder.com
www.ontopbuilders.com
osvaldomorales.com
outstandy.com
overviewqc.com
www.philjuricev.dev
policyinsight.eu
api.projectbluefire.com
quarcadvisory.com
deeplink.red-folder.com
reddickulo.us
api.rinkt.com
rishabhhonda.com
applesstrack.rxoconnectdemo.rxo.com
saachivijaywargia.com
sagnikghosh.dev
www.sagnikghosh.dev
www.samaritan.bio
www.sameekshatyagi.com
www.samerfahmy.com
sandspringsdental.com
text.securepointtech.com
shenobutter.com
pro.link-dev.sikkaapp.in
sormlandshem.com
szilvisutivilaga.hu
tacknest.com
theaisummer.com
totem-architecture.com
toursategypt.com
gabe.turborad.com
tv.ucast.com.au
ultrahearing.ca
uniteapp.ro
urdumanzil.com
firebase.verloskundigespiekt.nl
tabler.addin.web.id
www.webkomora.com
cdn.weluvtrap.com
perspective-checkin.weqa.com.au
miro.yac.com
Other domains in certificate