Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=swiftday.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C9:DA:96:16:65:9B:CC:E8:BE:2A:F0:A1:E1:3D:5D:9E:B3:29:71:7B:17:04:C9:7B:2E:F5:8D:0E:E3:2E:F5:C5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sanjanakoirala.com.np
accelth.ai
alamer.ink
www.alamer.ink
anchor4serviceslimited.com
www.anfysio.fi
blackboxsourcing.com
blockrocket.tech
blueprintsnotincluded.com
www.bullionbazaar.in
www.call-link.in
courses.carbon2capital.com
stuff.lambda.co.il
www.linkatch.co.il
auth.myquest.com.ng
serviconn.com.ng
www.serviconn.com.ng
www.leopostach.com.ua
www.transportesandes.com.uy
www.damianrizzotto.com
output.app.dehat.co
digitalsoppkontroll.no
djib-house.com
lockers.domtom.in
ethorama.library.ethz.ch
fightingcorruption.no
fognet.me
sig.franceschiniimoveis.com.br
www.gzg-dev.fsv-aptor.com
catalog.fundwave.app
galenic.systems
www.gdsc.hu
app.sasha.graphite.space
www.gsheetpress.com
havefab.com
www.hema.school
hikepics.com
www.hoi.services
sample-a.s.hotekan.com
fulfillment-legacy-dev.hotwax.io
fulfillment-legacy-uat.hotwax.io
babaloo.hrtech.com.br
choeee330.id.vn
hqduong2006.id.vn
justrei22.id.vn
ilaunchcontroller.com
www.job.gi
junior-etudes-phelma.fr
apklausa.kristoforoklinika.lt
lamina-gliwice.pl
jee.lumiprep.com
area51.magicexhibits.com
www.magyachting.com
app.mbh-hassink.de
medialukio.fi
web-demo.meducation.pk
metafora.game
mindsclik.com
event.app.moodii.io
app.moveloop.de
billing.mtrfreight.com
mydealer.myiq.au
dev.mymedstore.in
app.networkr.io
nexoconsulting.es
www.novecentoventi.it
staging.oplit.fr
www.penzion-w.cz
phlantbhasce.com
tri.pixelsaurus.io
app.pradolux.com.br
prouvebypatriciavinha.pt
profissional.qapper.com.br
www.quidio.co
ajuda.quitaboletos.com.br
link.demo.restranslate.com
rybydabrowka.pl
dev.sactracking.com
www.selfmade.engineer
severin-vonrotz.ch
www.shashankmanve.com
juara.bioponto.sistemasnemesis.com.br
www.smallpoxmodernthreat.com
www.smilecityrollers.dk
supertalent.io
swiftday.com
techbykrishna.in
thedeafguy.site
auth.threads2notion.com
todokenai.com
poc.travelaffiliatepartner.com
tsunami.nz
lbfo.tv.ismaili
wdam.dk
winetrails.app
www.xenthroscan.com
yourfleet.cz
youcade.youthopialabs.com
zenogames.io
btcheck.znoj.cz
Other domains in certificate