Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=phenonautics.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FC:F1:2B:02:34:CC:B8:9F:A2:C4:74:A7:22:1E:ED:5A:8E:1F:1A:2C:3D:6F:FE:F2:B0:7A:78:1D:E1:BA:92:09
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stg.noco.fun
101boardgames.com
a-ok.org
acventertainment.com
addresscontracting.com
adeptoo.com
ahurajami.com
alasanharia.com.br
appic-it.de
www.avanisolarsolutions.in
ayat.ai
blayr.org
openinsight.co.ke
hyperthermia.com.tw
gpgg.creating-cat.com
dadjokesai.xyz
dasun.org
www.dasun.org
www.deep-cleaning.mx
devrajsinh.me
totem.queue.e-ceos.com.br
faststartjobs.uk
www.filmdle.app
flynnz.org
admin.foodhunter.world
skitchen.foxiot.eu
www.gokulrajnt.com
www.gsquareclothing.in
www.hagen-schupp.me
app.halfm.sa
henkoti.com.br
ighsaan.dev
referral.in-pay.app
www.indo787.id
www.inproelectrica.com.co
instacv.app
jfem.com.mx
staging.intern.jrc.no
www.kalitraders.in
kirsty.fit
www.knowmyhabits.com
www.orbit.staging1.learningsuite.at
www.lentilhas.com
litw.link
lucary.com
www.makeelectronicsound.com
mathsnstats.co.za
melrodimports.com
my.mnar.ro
www.munariniewoodworks.co.za
profile.ryansyach.my.id
mycorehub.pro
nancypastoriltoledo.info
www.ngameapp.com
superchickens.obvitree.in
rateiodireto.cesar.org.br
outdr.app
outworld.ai
app.packandshipja.com
tikesen.paddledayo.net
phenonautics.com
link-verification.fibrix.platoisp.com
player.playflix.fun
praximapartners.com
www.qln.link
www.ranpe.fr
restaurantebompaladar.com.br
runbpm.app
www.salushyd.com
www.sammanlaya.org
staging.console.screenvive.com
sheepcheers.art
dev.sidsi.app
sithelokuhletrading.co.za
portal.sivakasisricrackers.com
dl.smiths.app
admin.ssvpsra.in
www.support-mac.fr
www.suspicious.link
swap.pt
www.talmudbavli.app
impcore-uat.thanosphere.in
www.thehunarhaat.com
thelocum.app
theranotes.app
seafi.theseabay.com
central.thestartlaw.app
thetyco.in
tiptoefix.com
auth.tolettacat.com
tongie.app
vendor.tulpie.app
www.ua.app
uii.ae
web.unwanteds.app
www.visiltech.in
webflows.app
wigo-wigo.it
worklogs.app
wski.app
Other domains in certificate