Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=web.malayflare.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 23, 2025
Valid Until
February 21, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:5A:5C:74:EE:00:DE:50:68:51:49:8F:C5:B7:72:00:30:35:C3:DD:11:5B:9A:CC:8D:F9:B3:87:7E:40:FD:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
splitnest.infoskillstechnology.com
faisal.3devs.co
7techco.com
a4stack.com
www.aerialwallpaper.com
afixhandymandurham.com
agladius.com
altamimi-lawfirm.com
andrevandam.com
andrianaskaperdas.com
www.andrianaskaperdas.com
arrowsbs.in
www.ballroomscores.com
ballspy.com
besserals50-50.de
bktourstravels.in
www.bktourstravels.in
globalpipeco.blackflagcreative.com
www.blapointe.com
www.blissfill.app
capitalhillbarbershop.com
myaccount.changemyip.com
chitlink.io
admin.choudharypumps.com
chubbysseedsupply.com
camera.claimsolution.biz
jbimpex.co.in
coceany.com
codeesteem.com
sttkyluat.congso.com
covidtrack.app
www.dashfruits.com
www.datezzle.com
www.dersinvitational.com
raffles-e-kiosk.doctorworld.co
biblio.egliseeauvive.com
espl.ellumesolar.com
fashfoosh.com
feinc.co
www.finxeduca.com.br
13cabs-business-staging.fleet-dev.com
gabrielseals.com
ghostofthescorpion.com
cgcampaign.gms.church
gnanadeep.dev
gogradulator.com
gpscam.store
guibl.com
hilitr.com
bo.hpptd.com
v2.ibolus.ca
pma.impactwrap.com
kamusinavlari.com
kasianbeauti.com
kisfali.com
lalarcon.com
sandbox.lambda-code.com
web.malayflare.com
mbuehrer.com
memcrimetracker.com
memoe.mx
miguelbogota.dev
mikelehen.com
m.momento-development.com
mrkanatci.com
myairvault.com
mgp.nodiak.io
provider-test.noknokindia.com
nothingburgerbook.com
gtfs-llm-translation.odpt.org
oliverrevilo.com
ch-access.onugo.cloud
www.orajas.com
www.outdoormusichk.com
www.oversikt.org
pet-match.fr
www.photoanywhere.com
pitoful-recruit.com
protectmymessage.com
ratiyalwings.com
callback.readyagent.app
sannbi.com
www.schnelltools.de
scrubsanonymous.com
sds-qr.com
www.simdroptaxi.com
bodacivilrodriguezlarin.swanmoments.lat
www.tiruvannamalaitaxiservice.in
tommyklemets.fi
trade-x.biz
fbgralpaz.turnosweb.app
nymarivadavia.turnosweb.app
insights.umanni.com.br
usnatural.ca
www.vermeirehvacr.be
sac.vivu.vin
race-calculator.watchforward.co
connect.weohealth.app
wingnotes.app
app.zorrowlabs.com
Other domains in certificate