Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=www.christianviglianisi.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 25, 2025
Valid Until
March 25, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2E:9A:CA:F9:0E:5A:CE:C1:3B:8A:BA:AC:ED:7E:77:E5:61:AC:63:84:16:0F:B4:5A:6E:FD:E9:77:57:DD:12:48
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-vo8nMIhV-yWM4Hb3K9eNLw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sim.zapay.link
hgjb.abosolutions.nl
admissions.kusip.ac.th
app.acessocriativo.com.br
adammichelin.dev
aidara.app
www.animalzing.org
auth.askcenter.com
www.azizaismail.com
onmyleague.belloin.fr
bigmach.in
www.blretroracing.fr
staging.bluerobot.com
bonbazou.ca
panel.botsedge.com
www.bracelit.es
buyzocart.shop
blog.byteqube.com
calfropingdaily.com
links.canvidapp.com
backpack.ccpcs.org
www.christianviglianisi.com
www.codeworks.bg
www.fungear.com.hk
complere.se
fairtree.dataviewfund.com
staging.diaplatform.app
ecare.diastecnologia.com.br
www.dmonesi.it
app.docmorris.de
app.eccodove.it
mok.eps.mx
www.ervanrenault.com
extradimension.games
admin.foreverware.org
www.geoladak.hu
reseller-demo.geoservice24.com
www.gets.cloud
robert.glaz.dev
glomo.no
cementerio.cdg.gob.ar
develop.gobertha.com
www.gooseclip.com
demo-intranet.goyazi.com
pztw.haohows.com
blog.hotcocoasoftware.com
byttapet-staging.web.innotactsoftware.com
www.investorlink.co.za
www.kobratransport.dk
www.kommentai.ru
www.lenormandapp.com
lexicount.in
form.litta.co
mariadelrosariogarcia.com
www.mdotnews.com
www.menuqr.uz
www.minervia.ai
pilot-galaxy.mosaicapp.com
caetano.mottamilord.com.br
www.nevagim.com
auth.iem.next-audit.de
www.nudgegram.com
test.dev.nyle.ai
www.oakay.com
odaiwa.com
connect-va.olympesat.fr
url.oroscopodelgiorno.cloud
packtrack.io
pharrellphone.com
plataformaproativos.com.br
realityworkshop.design
redoxdesignx.com
cps-dev.refactory.digital
ardac.rflex.io
app.romanvillagechapter.it
www.rx7method.com
whereis.samverlaan.nl
ll.sctindia.in
seasonstaff.de
www.senchao.xyz
www.shortshorts.run
snapmentor.no
taka1156.site
tapedin.net
tcgnotify.net
tec-craft.com
theroastlog.com
tibetankeys.com
ticsocialsas.com
trapmafiaoficial.com
trycoup.com
dhp.check-in.thrive.uk.com
umair.dev
unitcas-th.com
mybikes.vielo.cc
www.vizulr.com
house.webmodell.no
whiteout-climbing.com
yvrshufflers.com
zenithengine.xyz
Other domains in certificate