DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=www.kevincartersmith.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 25, 2025
Valid Until
January 24, 2026 63 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C3:32:A7:81:7E:1D:93:4D:9E:04:79:A5:F9:53:38:1B:34:4A:76:A1:67:FA:E3:BB:1F:55:FD:C2:2D:87:39:DD
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
rp.pointsoftwares.com

Other domains in certificate

53cr3t.com
netspdr.achernar.me
acim.club
activetech.nl
afropinovibes.com
pharm.aibiz.id
songmonk.aimcomely.com
www.alexadamwhite.co.uk
test-firebase.atklab.com
beco-hub.com
my.benchsentry.com
ashik.bhata.in
rehabilitacion.biobarica.com
bizaarai.com
www.blonsky.org
www.bluelizard.com
passenger.bryngup.com
www.buceadores.com
www.ci-companion.com
www.claire-and-joe.com
clubnautiquereview.com
herbs.dh.co.at
static.co.film
dropcabschennai.co.in
darklapse.com
www.dbateknoloji.com
not.defter.im
dewpondcoolingtowers.com
hs-installer.dev.disruptive-technologies.com hs-installer.disruptive-technologies.com
distribute-staging.com
www.dosetalent.com
belleplainenews.enotice.io
www.falconplusqa.com
wache.fds-security.de
www.flo-codes.xyz
www.getbalemuya.com
giovanniprezartista.it
www.gnarly.bike
app.gonovi.com
harkathrinesvart.no
www.hyrly.com
dl.infihire.com
demo.interactive-demo.com
schools.joikid.com
admin.k-9virtualagent.com
www.kevincartersmith.com
kiadrummondville.com
www.cloud.lappso.com
leeboonstra.dev
portail.lepointensante.com
d.loracon.app
www.lxdesign.no
mastodonmama.com
matheusmf.com
quiz.staging.merlo.cloud
metagammon.com
mjprinters.in
www.nanaopoku.com
novaestethic.com
npbesapipla.in
nyukyu.com
obsilion.com
stok.ozsoymetalpaslanmaz.com
pearltaxi.lk
a8.pedidomovil.es
one.penji.co
www.phase1offers.com
www.pickaday.io
poukar.net
www.quconet.com
admin.staging.referaku.com
www.refinedrobotics.com
www.ruteksystems.com
connect-ng-carrier-rewards.rxoconnectdev.rxo.com connect-ng-carrier-tracking.rxoconnectdemo.rxo.com connect-ng-carrier-tracking.rxoconnectdev.rxo.com connect-ng-claims.rxoconnectdev.rxo.com connect-ng-purchase-orders.rxoconnectdemo.rxo.com connect-ng-shipments.rxoconnectdemo.rxo.com
guide.schreder.io
seekandsupport.com
to.sendit.asia
showroom.sensotix.com
sparkglobal.biz
www.swiftlytomiller.com
visual-inspection-trial.tdse.jp
www.terapia3fala.pl
the-arkive.com
tabber-prod.transround.com
www.tvtiebreaker.com
fire.unreasonable.app
www.venturaiot.com
test.firebase.waferlock.com
app.wearejoga.com
stg-get.well.ch
www.wheelofnames.com
xploraweb.com
knowledge.youdocms.com