Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=resumeeditorai.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 18, 2025
Valid Until
February 16, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0F:B6:86:14:66:8F:C8:C7:B6:A7:C1:90:9B:C2:7F:C8:A4:E9:D9:A5:F6:66:5F:A4:00:00:CC:22:A8:10:4E:9C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
seashell.live
agilizacart.com.br
app-assets.allezspeak.com
ani-mato.net
inspect.autoflip.com.au
www.bandy.camp
app.bookr.co
box.photo
bywallof.co.za
go.castalianspring.de
chakata.co
kiosk2.cleanbox.co.il
dev.picdrop.collagia.ai
ximivogue.com.lb
tacobravo.corntech.com.mx
cphillips.online
www.craigwoollard.com
www.dailythings.pt
disruptivelab.dev
ai-plus.dmtecnologia.dev
link2.dragonacecasino.com
orm.embedded-commerce.com
evytest.dev
weiv-data.apps.exweiv.com
ghssportha.info
2dspine-holy.globalsoft.games
www.goboss.beauty
gundams.dev
homevue.io
hugoborsier.com
igiardinidibriolo.it
inven.ca
app-dev.itmoos.nl
www.joshmay.digital
www.ju2tin.com
kalkulacje.pl
share.lamiacampania.it
www.libertyjs.com
app.limitlessguidedvisualizations.com
app.lovejunk.com
www.maedchen-oder-junge.de
www.forland.meltoresprofessional.com
demo.mently.pro
mikemurray.me
mmelis.com
mrfx.xyz
mtdcabs.in
mypracticeprep.com
test.mcms.nmb.gov
api.noorbydesign.com
nuaginaire.be
oceesalon.com
app.pato.today
beta.petitbus.com
radarchartdiary.pigmal.com
pixel.land
jinny-app.plaping-dc.com
polymorph.hk
pranavgupta.org
www.productdemo.dev
red-xai.com
redonionworks.com
www.reflectivemindscmh.com
resumeeditorai.com
www.reyjosias.com
www.ripatinvesi.fi
stocks.sanjaygangwar.dev
sayikrali.com
www.scrubsandrinse.com
admin.dev.sentinel.video
www.sh4rp.net
ubicquia.smartcitymarketplace.net
smsyogi.com
essential-group-admin.smudge.dev
training.somersetsurvivors.co.uk
squaddee.com
www.superdoku.net
app.tablechamp.at
www.tacofuego.com
tactikapp.com
thaduceus.com
bubblepoints.themissioncontrol.com
theophrastus.org
www.theperfectboardgame.com
dashboard.theranest.com
www.threatmatics.com
todolists.net
trippbarker.com
tucodigoencasa.com
agents.u2paycash.com
variationscondos.com
venkyresidency.com
www.vitaminpilot.com
app.wall-investments.com
webwingss.com
www.wirkaufendeine-kueche.de
wonderflutter.dev
wordsnack.com
www.zappsite.com
zygouslabs.com
Other domains in certificate