Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dittodigitalsolutions.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5C:19:D6:15:E6:8B:FB:92:04:86:59:E8:EB:95:4C:03:5F:9F:F6:6B:32:34:DE:35:B2:1B:01:3B:2C:CE:17:B3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ryanzipprich.com
joy-sectional-config.3dcloud.io
go.demo.aimpact.ai
hq.ala15v.com
www.allygale.online
thinvite.avalerion.net
admin.nixt.banpunext.dev
redirect.berimal.pl
crm.betop.uz
bodynova.ltd
booksmartflea.org
www.cadense.net
babybeat.caremother.in
clm-roi.com
login.digisevapay.co.in
session-analytics.codedesign.ai
network.alphaassistance.com.tr
auth.creatorbundle.dev
www.designtitles.com
www.destino-thuis.nl
info.dinii.jp
dittodigitalsolutions.com
join.dndcompose.com
doloveworkout.com
www.drdeb.co.uk
ducloi.dev
dunacruises.com
cldr.ecellar-rw.com
www.eichenwald-showgarten.de
links.eldorado.ua
eteri-hm.com
tools.exabox.app
my.facestudio.online
www.finityventures.com
app.glorymate.com
nutrition-origin.me2-dev.gmal.app
www.gmtechsoft.com
trantrongnguyen20225216.id.vn
impolitic.online
invisible-factory.com
j-ko.dev
j-radlab.com
mixer.jetpackpony.ru
jinhuapp.tech
johnlarsendesign.com
www.johnrogala.dev
www.kucza.xyz
leonardopereira.com
art.staging.business.lifebrand.life
lifescorelab.com
www.lillaestomi.hu
go.lingkodsingapore.org
linguajam.com
lochlanbroughton.com
loftaccounting.com
www.losbandios.es
wirelessmap.markhansen.co.nz
www.admin.minskolklass.se
movemint.life
url-test.mytix.in
app.nederimoveis.com.br
novassist.co.za
com.novelcoworking.com
www.nuansaconsulting.com
oniichat.com
panel.patikbarinak.com
www.planetebleue.art
practice.design
www.projectstork.io
links-test.raftr.com
reach-tech.com
remember.us
cotelsa.rflex.io
westham.scouthub.app
www.sdahymns.org
securitepublique.ca
app.sharethelove.au
www.shellyinterchem.com
www.sherv.dev
aasa.shopshelflife.com
migration.simpleclub.com
skuad.me
srttttttttttmz.com
stand.app
startupmanch.in
admin.stutor.com
www.svarnaliving.com
adas-pwa.tech-scheduler.com
link.staging.tempdee.com
www.testsmell.info
boost.thedbmethod.com
play.tic-tac-trivia.com
dev.speedle.triangularitylabs.com
www.triviza.in
iimsam.unitednetwork.ae
ventureboost.ai
my.wellnessfirst.app
y-mgt.com
to.yazio.com
app.yoypr.com
Other domains in certificate