Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=zolotom.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
50:FD:34:C1:0F:BA:63:D9:22:58:DE:1A:5A:EE:D0:50:88:B9:F5:B5:0E:A5:06:1B:C8:DE:81:D0:17:85:63:65
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stoicmind.fr
www.3dprintingcanberra.com.au
jobbox.4xpress.com
www.acouture.net
ssen.lenza.advanced-infrastructure.co.uk
messenger.alecpagliarussi.me
alexander-lang.net
www.alphaair.fi
visit.dev.anywhere.healthcare
app.australgroup.com.pe
www.avvocatoberno.com
baecher.info
blackliontrees.com
www.blaze.cc
www.bostonfood.app
www.bromptonmafia.com
my.browndiamondstech.com
www.buildtrix.in
pharmacyapp.carada.jp
www.choose.computer
chriselliott.cc
www.chrysalisfinance-ec.co.uk
vetpro.co.in
conversionharmony.com
www.coolcatresort.com
www.cromptonadapters.com
jukebox.d-cot.com
api.dev.dancehypha.com
deandreamatias.com
application.decision21.org
digitalfreight.company
dev.directed.studio
mobile.driivcloud.com
link.edlusion.com
console.equiwatt.com
citas.escudea.com
eshar-app.com
euribor.pro
felipeloyola.rocks
fitstarapps.com
www.florian-meinhart.com
www.gacha.space
staging-link.gowagr.app
groopy.com.br
demo.hotelbooki.com
www.interbee.io
teclab-dev.klarway.com
webinar.ladystartup.com
admin.dev.mca.leanera.work
www.leesyumcha.com
help.linkila.com
lovemultifamily.com
lubanco.net
luther.ch
tmo.mcafee.com
www.mentoraonline.com
mniyk.com
www.mpc.team
nhakaafrikanworldview.org
www.notaryejournal.com
pancake.onepug.com.br
dmg.ovenfo.com
www.pattyhendrix.com
www.paulamonteiropersonal.com.br
app.paymytable.com
www.perspectives.design
risk.phillipwildhirt.com
jobs.powertechs.us
archivos.proferonald.com
blog.projectifi.io
chatengine.proxtera.app
nl.zappboard.quickcommerce.org
strava.raise.digital
www.rakeshmistry.ca
eh-staging.recruiting-solutions.org
purpose.salem.edu
salvatgia.cat
www.santaolallafoto.com
daniel.sayyee.com
app.screenclip.com
simchronize.in
skool.sg
creator.socialpi.ai
soliditynapratica.com
www.speedknot.com
www.stoick.io
www.thepioneerplace.com
www.tripwi.se
dashboard.tutorme.com
tuunepauler.com
doc.usemason.com
uxeinhorn.de
countdown.vamsiambati.com
verve27.com
trucojam.vieirinha.dev
app.engage.vonselectric.voyagernetz.us
waiterprofast-table.waiterpro.com
zicott.com
zolotom.com
paylink-uat.zonbayar.com
Other domains in certificate