Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=menu.ohmymenu.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 30, 2026
Valid Until
April 30, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:11:CB:1F:58:4B:90:99:C8:2E:87:D9:EC:4D:B4:6E:06:B3:47:7A:9B:C9:03:A6:D0:EA:E1:50:8C:DD:CD:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
staging.gamoteca.com
zerowaste.aday.live
app.adbinder.com
anildagdemir.com
www.aplano.de
www.appscontrini.it
www.apptownstudios.com
kkomalab.artay.net
breathe.awakening.systems
beresheet.fit
bionde.dev
request.bitcointribe.app
caios.dev
www.chitragupta.co
www.citizenship.vote
kshetra-manage.classet.in
startkorea.co.kr
www.coderifttechnologies.in
bespokehabitat.com.sg
www.commute-calculator.com
pilot.countrychickenco.in
flipbook.createcookbooks.com
www.crustypizza.com.au
www1.cycletoaccelerate.com
cysero.net
wb.dataleaper.com
dclebd.org
neo.delivery-boosting.de
www.digitaldreamworks.com.au
home.diidon.com
supportehruser.ehryourway.com
www.estincome.com
felicette.dev
info.fibal.app
app.footyrecruits.com
funclass.com
pay.getshopay.com
getzee.co.za
dev.hi-ya.com
www.ibigdea.com
www.icon-builder.com
app.imoveisgenesis.com.br
jedybo.com
condor-widget.joinsherpa.io
jollymarket.io
julienrenaux.fr
www.juniorlit.com
k2n.kr
kazzna.jp
onecare.kmldn.dev
ct.liveqa.jp
madgamelove.com
mansikshakti.online
marhold.fr
mayoosh.blue
minidota.watch
www.momsandtots.biz
www.moub.com.br
devoluciones.mymoons.co
nexter.it
management.nexthome4u.com
www.ninaei.com
northernswimschool.com
northwestacademia.co.nz
app.novanegociosimobiliarios.com.br
www.obaidnadeem.com
obserotimer.com
obsidianpc.com
menu.ohmymenu.com
www.moatza-hityash.org.il
panthera-peak.com
app.pathfinderatscrm.com
pensioenbijvebego.nl
philippinelaw.jp
www.phramebooth.com
www.playtripeaks-online.com
polariskampen.nl
stuff.quazi.me
rachelrussell.dev
saaslab.xyz
www.sachinsart.com
live.sascargo.com
crm.servetie.com
sg719.com
shubhambutle.com
policy.simplerion.com
brand-mixer.snoofa.com
spotground.com
stubbydigits.com
service.suma10.net
tafarrygoodman.com
leaderboard.the-crystal-maze.com
www.tobynboudreaux.com
www.usvisaslotalert.in
vivamoselmomento.com.ar
im.vlts.pw
crm.vyapai.com
breakaway.willowprescott.com
wisoftify.fr
www.workforages.com
Other domains in certificate