Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=trading.almazajgroup.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
May 06, 2026
Valid Until
August 04, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9F:6A:75:8D:6E:59:F1:73:70:F5:88:AD:7C:68:AD:3C:E1:9F:01:D1:F7:63:3F:F0:3F:4F:B2:DE:01:F2:62:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
screengoblin.app
www.screengoblin.app
10-20app.com
3ddgtraining.com
www.a2zcode.com
links.abcollab.com
acharyatarunkumarsah.com
action-for-good.org
mockup.adonix.com.au
www.aidataark.com
alek.alekzen.com
report.almacreation.co.jp
trading.almazajgroup.com
asfitnessunisexgym.in
atullogisticsindia.com
autoreengage.com
www.barako.tech
bizwebbuilders.com
boostocart.com
borderride.fr
byarnold.com
byhorse.com
cdn.calypso.casino
admin-dev.cheaseed.co
chompy-inc.com
confident-tech.com
corefinancas.com.br
cre8bond.com
crittercoast.com
derehag.se
dominic-tripodi.com
www.doodee.ai
doubleshub.com
www.downloadyourcourse.com
e9solar.com.br
elcipaket.com
www.elcipaket.com
endvale.online
envirtuo.com
erteno.com
app.estetix.co
florhadar.com
galleriaiq.com
galloe.it
goldinfiniti.com
gdpr.goodgoods.org
greencycl.co.za
www.houseofgentlearts.ch
iamhetshah.com
www.invariancequestions.org
ivadirecto.com
jeongmo.app
johanoakes.com
johnxhwang.com
www.kirogluvinc.com
koperasi-digital.my.id
kothari.properties
layne-pitman.com
whibball.leaguesquare.com
firebase.liberty-rider.com
limhimarketing.digital
links2.ca
londonpelvicpain.com
lonekitchen.com
lunexaos.com
lunia.health
mamzo.co.za
masterstutorial.com
mateus25.pt
me-overseas.com
moregoodtech.com
app.myprepmate.com
namaratasharma.com
www.nouebynour.com
optitechbpo.com
www.orhanarslan.com
hpdev.paycloudafrica.com
synergysummit2025.ppg.com
readypi.online
roch-lusinchi-avocat.com
www.rtatech.com
rustaqi.art
scienceinsightplus.in
seethedust.com
shalerareawrestlingclub.com
shivbhatia.in
stefior.com
app.teamsante.at
www.telana.cloud
the-studio-digital.com
thelittleindiancafe.com.au
thomassecretsanta.com
nootnoot.trbnet.com
dao.trustline.id
uzumakichan.com
vetervinn.org.ua
portal.woonig.app
tanizawa.wowdesk.jp
xeniatotologin.xyz
zackion.com
Other domains in certificate