Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=workingfox.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 14, 2025
Valid Until
March 14, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BB:FA:60:3A:33:FE:B0:82:B6:C6:21:56:B5:BE:CC:02:30:3C:74:0E:DF:B5:42:06:2E:5C:47:B1:E4:88:10:A5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
staige.it
xenergia.energia.app.br
autotekvalenci.fi
azhagucabs.in
www.azhagucabs.in
web-dev.bacpac.app
bagattibronzisti.it
beculsac.in
auth.bodyhackers.cloud
tsdashsep.cacola.com.br
www.caive.co
staging.sat.cambri.ai
www.centerstreet.org
www.construtoraaso.com.br
www.containitaz.com
booking.coverhealth.ca
cowork.ooo
link.businesschecking.credibly.com
www.cucprime.com
cakesort.playable.d2mstudio.com
admin.denversantaclausshop.org
webform.ebesha.net
www.encantosvale.com.br
dev.ezsume.com
feastival.rocks
fermedespuits.fr
www.ferramentabistrot.it
funkyfata.ch
geoffcheck.com
www.gigstack.io
chef.gohomely.com
greengrowth.io
scene.hon.com
www.horoscope-fusion.com
goto.idahohoneyhome.com
www.iglivestreams.com
www.impath.in
ironmantn.in
apply.jobnow.work
sdk.joinsherpa.io
juhani.dev
kmh4321.com
black-white.kreatewebsites.com
ksrconvention.com
lanes.io
app.lazico.com
liccon.app
madcoin.io
www.mailmaid.co
www.meethineem.com
metrocubicoweb.com
agenda.minmeeting.com
oldconsole.mysyara.com
neurale.io
monitore.neurobots.com.br
newriverdeserthills.com
www.npesnam.com
omnicraft-studio.com
order-at-table.yosushi-london-luton-airport.paymytable.com
workshops.penmob.com
piirtotalo.fi
admin.pinchjob.com
plumesdeyeti.com
www.prahartech.com
www.proof-of-quantum.com
www.proper-ly.com
qhhtcamacho.com
www.rancho-moreno.com
lounas.ravintolahameentie.fi
rphasennus.fi
sallopez.tech
sci-management.com
scigeneralcontractors.com
donations.seeraht.com
www.semihonay.com
www.sewardpolice.us
poc.smartcore.dev
app.sokoapp.co
specializedconcreteinnovations.com
therapist.stratcare.online
teachaids.org
abc.web.the8th-floor.com
thelacarte.com
www.thelyze.com
www.developer.toddkrupa.com
www.tourosconectada.com.br
tripconnxdev.com
www.tristanscakesandbakes.co.uk
rtsd.upskillscenter.com
fc-augsburg.vebasoft.com
app.vizgu.com
waiterprodemo-orders.waiterpro.com
wibib.com
workingfox.com
xanderiel.com
ymcloud.jp
www.zackzhang.dev
emoji.zik.ooo
www.zimatit.com
applinks-test.zumvet.com
Other domains in certificate