Open
Cached
·
just now
91/100
SECURITY SCORE
Certificate Information
Subject
CN=wijin-academy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 03, 2025
Valid Until
January 01, 2026
36 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:6E:0E:2C:5D:3A:52:24:B1:C8:11:68:59:BF:38:88:77:86:26:BA:8C:BF:57:E4:B1:86:F6:4A:DB:6C:4F:17
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Good
default-src; script-src; style-src; +1 more
default-src 'self' localhost:* *.sumai-entry.app *.e-bukken-1.com https://lampchat.io/ www.google-analytics.com *.googleapis.com *.firebaseapp.com *.firebaseio.com *.cloudfunctions.net www.google.com translate.google.com *.es-e-bukken.jp www.gstatic.com api.zipaddress.net *.jp.auth0.com *.es-account.com kit.fontawesome.com view.fullstar10.com data: blob:; script-src 'self' 'sha256-NNiElek2Ktxo4OLn2zGTHHeUR6b91/P618EXWJXzl3s=' 'sha256-K1WQb6p9CJwzkDVgnxo9ralscz37/PEk2kaBEfSDHYw=' 'sha256-7TKpAZILtnSr5zPE2CztLMxZDMcfK+QPsoPNPm1aX1Y=' 'sha256-nNFYeM7izPxaSvFXWhrVe0U5zwzw/1APib25Ah99EIg=' 'sha256-d4KI8GTegXrqjf+COsVJKxAhE1I9cY96PUwJxy42zsU=' view.fullstar10.com lampchat.io kit.fontawesome.com www.google-analytics.com apis.google.com *.firebaseio.com storage.googleapis.com translate.google.com translate.googleapis.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdn.jsdelivr.net translate.googleapis.com view.fullstar10.com lampchat.io ; font-src 'self' fonts.gstatic.com fonts.googleapis.com cdn.jsdelivr.net view.fullstar10.com;
X-Frame-Options
Excellent
deny
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Strengthen CSP by removing 'unsafe-eval'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sumai-entry.app
2018.me-nutra.com
lakeshorelearning-cert.3dcloud.io
w.abacus.co
ad-teq.com
cdi.aghedgedesk.com
bms.antion.de
codensa-demo.arielretamar.com
link.camify.ayslabs.io
www.bennettsbridge.ie
www.bias.bet
bibochat.ru
boundedlinetechnologies.com
www.broadwayticketguide.com
url.centraltexas.dog
papyrus.choppy.zip
farmer.cmonehealth.org
pmgc.com.bn
lattergloryacademy.com.ng
cn.creatoradar.com
curtisfriesen.ca
admin.departspares.com
anis.djaidja.com
q2-nps.dpd.co.uk
spps107238.dpdns.org
www.dubaifreehold-properties.com
map.e-onlineservice.com
www.spinabac.engpa.com
conference.enhancedds.com
functions.fiorellapattoni.com
fonostellamonteiro.com.br
www.futureit.si
staging.getrevel.dev
lalahi-cms.hicity.world
www.iachc.ca
janekstockburger.com
jashanpreetsingh.engineer
jashanpreetsingh.tech
jitpapneja.com
carto.josesa.dev
jungleathletics.es
kitcodmcc.com
www.lab18.net
www.lachocolaterieduhautclocher.be
letsvisualise.it
app.ltearn.com
mono.lucas.men
www.lucas.men
experiences.modeka.space
static.moondropsites.com
v2022.nmnithinkrishna.me
nvinproperties.com
auth.nyxo.chat
react.misueldo.o9.cl
www.openindustrialdata.com
auth.opentracks.app
test.optimxsports.com
www.orobyteit.com
app-ua.overview.one
www.ozgurcelik.com
www.pacemaker.press
peartree.games
perku.ltd
www.player12.co
portalest.com
qcatstudio.com
raftsbc.com
ramtin.cc
www.resizeimage.io
www.revillager.com
www.semacint.com
www.sewaora.com
www.sis-sicherheit.com
s.skiday.app
northerncity.studiossolution.com
test.swiftscience.io
account-verification.symplepos.app
www.syncstrategicdigital.com
www.syncstrategichq.com
assinatura.taqtile.dev
www.targetier.com
theonephotobooth.com
www.toellc.com
www.tripoverall.com
www.twoowl.com
calculator.tynanfinancialsolutions.com.au
uniqryde.com
dashboard.unrealcloud.io
www.vaade.co
velcrackers.com
www.vetaitexas.com
preview.vetvise.com
victorbrun.com
app.webewell.co
www.whosnextplay.com
wijin-academy.com
yesmatecleaningservices.com
www.yline.app
brisbaneaisummit.yodelit.co
modelsandcreatives.yodelit.co
Other domains in certificate