Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=quantumlionlabs.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 31, 2025
Valid Until
January 30, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:C7:C9:5B:8C:A7:4E:EF:5D:DF:D9:DA:E8:E1:34:5A:DF:87:A5:B4:D9:30:03:36:DC:BE:3C:D4:D2:BA:88:17
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
staging.cargotic.app
bhf-spins.3dcloud.io
arkonconecta.com.br
atmanstudios.in
wadud.aurify.ae
bloohstore.com
www.bonningtonwater.ca
www.bonviewchurch.org
app.breathe-meditation.com
callmed.online
claireclairemont.biz
claressa.app
deepengineering.co.in
www.course-compass.se
cliente.app.cristofoli.com
cryptopayment.link
cubaco.pro
digitalafterlife.in
www.dksgade.dk
avanza.estudiolab.app
etherproagency.com
georgebrowning.net
gulfira.store
jaipur.insightbrandcom.com
inviosc.com
www.invozora.com
jamiehamilton.ca
johannaorduz.com
kimeshopp.shop
www.kissaki.es
road.kreep.io
leftbrainrecords.com
linkedhearts.ca
kumamoto.linx.live
qa.madhive.com
maketheprint.shop
happymeal.mcdonaldsnederland.app
mediatorbase.com
meetmeat.in
app.admin.mimoglow.com
mysecret.recipes
numberstonames.org
app.octoapp.eu
odbbcapp.com
beta-qa-candidate.offerdox.com
onestepstudy.com
www.ooowl.jp
orggu.com
oxeye.ai
ozawa-yusuke.com
app.payearned.com
pearldevgroup.com
pebhabgames.com
ezcardsholder.penzigo.net
station-hub.portfi.biz
vota.prosantena.it
deploy.prosoftom.com
pryorroots.com
qartis.tn
qrfacil.com
quantumlionlabs.com
memorial.rakisoft.cl
rcg.dev
loreal.resourcelinked.com
www.safely-ai.com
sawced.xyz
poker-pals.seabirds-games.com
sevenstarspirit.com
shreelakshmitravels.in
www.smdv.com
solismachines.com
app.souschef.io
splendit.app
sportslaw.in
www.stratento.com
successagroservicios.com
xvdanielacampos.swanmoments.net
order.tabl.page
www.tech9studio.com
beta.techvolvia.com
tedxsviet.com
www.teledermatologija.lt
get.theellisapp.com
admin.theguide.design
www.thetwinsbrewingcompany.com
toocleanco.com
tutionverse.com
uiegg.com
www.urbity.com
vdfinancepedia.com
tienda.vinogenes.es
vismal.com.br
waspoenergy.com
www.wesleymb.com
whoarewe.click
www.wsr-starfinder.com
wxsms.net
go.yourappstudio.com
www.zeroumimpacta.com.br
zhienpackagindemexico.com
Other domains in certificate