Open
Cached
·
just now
80/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=admin.cdcare.ng
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 17, 2026
Valid Until
July 16, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:9F:08:A6:37:49:03:64:18:45:6B:D8:A5:35:37:2F:EF:7B:F8:C4:B0:94:93:2D:A7:82:B6:57:F9:87:2F:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
comodoca.com
digicert.com
; cansignhttpexchanges=yes
globalsign.com
letsencrypt.org
pki.goog
; cansignhttpexchanges=yes
ssl.com
Wildcard CAs
comodoca.com
digicert.com
; cansignhttpexchanges=yes
globalsign.com
letsencrypt.org
pki.goog
; cansignhttpexchanges=yes
ssl.com
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
tamilmuthu.com
alpinate.com
www.alpinate.com
altamarresidencial.com
social-auth.apicafe.io
test-firebase.atklab.com
b10invest.com
b10invest.com.br
battlerapolympics.com
client.bobcoin.cash
buildsurvivegame.forum
business.buksa.app
caregiverafrica.com
admin.cdcare.ng
celliko.tv
www.checknota.com
comegatheround.com
connectfourguy.store
crewjuegosycafe.com
cuddlykaijuhq.com
www.danatbazar.com
delgadocreative.com
www.easypacksimulator.com
edgeai.academy
www.edgeai.academy
www.edpic.app
console.mimi.fd.ai
fernandocgomez.com
fogjunkosszelizaert.hu
www.fomo-tv.com
www.foreverperez.com
fpatracker.com
franciscaandreatolosa.com
franciscogomez.dev
frenchenglishidioms.com
www.frenchiesdao.fun
authweb.gammaflip.io
greenergagewedding.com
gunghadi-army-wedding.cloud
hanoixocachatdevilopplus.com
www.hanoixocachatdevilopplus.com
hanoixopauttanadevilopplus.com
www.hanoixopauttanadevilopplus.com
hanoixosamuckkedevilopplus.com
ips-hyl.com
stagensdl.iserveu.site
school.itzinstitute.com
jjp.llc
joeai.eu
joybites26.com
karstlabs.com
katenewmantherapy.com
keeli.ee
www.kosoku.info
www.kudzayitienganeportfolio.com
kumtechgateway.com
static.legalscape.jp
danenrico.liteclerk.com
www.londonlivecommunication.com
auth.luca-ai.app
tspd-admin.macademy.in
portfolio.markstrom.dev
mlafterhours.com
www.mlafterhours.com
molgreage.ma
www.movetoplay.in
mycardriver.in
nationaldefensivedrivingacademy.com
nguyengiatungduong.id.vn
nimittaworks.us
www.ntsebeprojects.co.za
oephlw.org
ofoty.com
paldigital.com.tr
dev.paletton.com
pandishu.com
docs.patsoftware.com.au
www.paxtraxxsoftware.com
m.penerbitkbm.com
pipeblox.app
www.placcess.com
quanlyxuong.io.vn
reformedbody.co.uk
sagarfood.com
seivon.com
sessionbill.com
shakethategg.com
app-staging.smartkasse24.de
www.smileforlife.ie
susaplay.com
ixi.swapptechs.com
swingli.app
www.teevro.com
www.tinyepoch.com
torokszentmiklosszallas.hu
unitxi.com
vitahelm.com
waysfi.com
wendellandhedda.com
account.wikimuseo.it
Other domains in certificate