Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mikrodash.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 24, 2025
Valid Until
January 22, 2026
64 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F8:C7:94:11:7F:47:67:2F:55:5D:0B:CF:C9:AB:97:B6:36:16:A5:BA:3A:31:4E:CB:C8:1A:A3:0D:7C:82:66:21
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
talantakazi.com
onwardconsultants.3diq.com
us.adagiomedical.com
affectionatehomecompanion.com
www.aionphone.com
l.askiris.io
n-pendulum.async-studio.com
blazemotionai.com
bonuss.me
rewards.capitalia.co
gt.car-detective.com
cercocorp.com
clemenssageder.com
climbercountdown.com
www.cosmolink.in
www.craftedinvt.com
hk.creatoradar.com
blog.csclicker.com
cat.ctwd.com.au
www.cubedproperty.co.uk
cybertrolls.online
dev-auth.czpro.jp
app.dentalxrai.com
console.donatid.com
www.dreamevents.mx
durlettdesigns.co.uk
www.easymessage.app
elafinnovations.com
eneos.elsa.sg
equiposemmi.com.mx
evawardrobe.com
lhellgren.exelor.com
www.gabrielverronet.com
gameforthegood.com
go.gdoctorstore.com
goalchaserapp.com
search-winery.grapeweb.com.au
test.gunasolutions.com
hoatuoithuynga.com
hyvark.com
www.hyvark.com
impreszions.biz
facts.jayglose.com
www.jsohndata.com
test.judgezed.com
zeus.kutamma.dev
leavefacebook.org
omnicdp.letscommercebr.com
lidiailuminacion.com
lisalt.dev
liveteams.co
localfluence.com
lunaciel.dev
mahavircables.in
marketingjob.app
maycreekclub.com
www.mib.consulting
mikrodash.com
mollygilbert.dev
business.morwils.com
myceliummusic.org
auth-mywork.myworkus.com
www.naxs.com.ar
www.nebodfw.com
www.nkhwazispark.com
norwaytowin.com
firebase.oice.com
www.parkur.studio
platter.cloud
www.poke-do.com
www.psicologiareversa.com
www.raagasudhamusic.co.uk
railstartups.org
rastrosdeguale.ar
www.recentcontacts.com
career.roguerecruitment.com
rupertcloud.com
link.sambathcomputer.com
app.shabu-yuzuan.jp
sotaplus.net
cube-solver-4x4.sparkappz.com
random-number-generator.sparkappz.com
www.sparkdown.com
www.stousn.dev
test.sylva.ac
stage.portal.theseabay.com
thomasdupre.fr
www.stage.threshold.co
titanoid.com
noblr.partner.trellisconnect.com
mern.uttaratraining.com
vanitilabs.com
next.vicuatui.com
autocad.websolar.cloud
weretheyonlawandorder.com
wg5k.org
wheelpickr.com
www.mvp1prj.work.gd
xpendt.com
yourbrandbuilders.com
Other domains in certificate