Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.shirleyball.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:1F:81:BF:F0:40:79:45:89:35:02:91:A8:AB:DB:FD:A6:F5:65:55:3B:5A:02:63:6A:E4:FB:2D:8D:4D:68:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
saiveda.sairhythms.org
whatsapp.404studios.in
www.abercrombiemediation.com
quota.arts.tu.ac.th
www.akiservice.co.uk
invest.algovested.com
anvayaaitechnologies.com
app-agentur-bergedorf.de
whatsapp.azyanom.com
habits.bestervisagie.com
biocv.info
www.brian-gesch.com
legal.bring-am.com
www.bunyancom.com
callosumai.org
ceelit.com
christophersylvain.com
auth.clinicase.app
collabtrail.com
siwakotimanpower.com.np
www.crash2cash-media.de
depannage-informatique-morlaix.com
www.depannage-informatique-morlaix.com
www.diforb.net
digitalmathlab.com
www.edubloom.kr
www.erica-abbigliamento.com
example.evilfrog.pl
ex-node.com
resume.fwd.wiki
display.getsoundaura.com
www.getsoundaura.com
www.globalpiggy.org
backoffice.greenclubcbd.com
hitascore.com
www.hitascore.com
business.hitonari.me
d.hive.properties
homeshiftglobal.com
app.hyperwash.se
icmacc.org
haquockhanh.id.vn
lqphuc85.id.vn
totem.idun.com.br
igniteinnovations.in
www.indiquer.in
isc-uk.org
www.juanignacioschwemm.com
legebot.md
dashboard.lifltrain.com
lzstories.com
www.m-juuksur.ee
mamaridekenya.com
botica.medifarma.com.pe
try.mesonify.com
co.moons.rocks
ventry.nexday.my
nnaportal.co.uk
nsf.live
odd-one-out.org
ofam.online
timer.parksidelego.org
dynasty.portfolioview.co.za
www.pranavchandiramani.com
login.premiumrentals.fr
qrcode.ug
auth.qweekpay.africa
radtke-solutions.eu
edu.rnd.works
rs-app.de
www.saboonexa.in
salmanechafik.ma
samasalon.com
schoolofthought.us
www.shirleyball.com
www.shotbyarya.com
softwareagentur-bergedorf.de
sors.one
stayinuruguay.site
memories.sumirunforever.com
brew.terrible.dk
thefxlion.com
thesidart.in
thirdtimes.org
admin.trustvms.com
smart-city.two-i.com
typesplit.com
community.uptn.io
utkrishtutilities.com
www.utkrishtutilities.com
intranet.vanwijnen.nl
vtssa.com
www.vtssa.com
square.webitiz.in
www.webrtc.tv
www.wecode.io
wgcregister.be
peels.yasith.co.uk
intelligence.yohooh.com
obesitest.zdrav.kz
Other domains in certificate