Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ilan.aderanss.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
86:E8:43:34:1D:F9:8F:B5:89:9D:39:97:45:9C:4F:CF:49:87:7B:90:DD:61:C7:89:DA:4F:48:FC:D9:FB:7A:9F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tanjadejong.com
app.10xth.com
web2020-development.ackee.agency
ilan.aderanss.com
al9myd3y.com
radio.andrei.codes
redeem.animaetech.com
antonlicht.com
bridge.arianee.org
www.biblias.gt
www.bioclockinje.com
staging.blackinmaths.org
invoice.breban.ro
www.cameratabellisomi.com.ar
www.canaesmeralda.info
cengel-debug.cengel.ninja
cicerobrunelli.com.br
www.tracksonic.co.in
chventures.co.kr
hongsin22.co.kr
www.coconuttree-resorts.com
demo-linear.demov3.contentfabric.io
cosmodental.center
profesionales.darsalud.com.ar
app.daylybread.com
clinical-trial.dentalxr.ai
www.deringm.com
dhenegene.com
www.dokidoki.games
dreamio.me
www.dscvryai.com
aladdin.enderago.com
business-portal.funzeventz.io
www.ganaholdings.com
gavlansgame.com
sindan.gla.jp
go-my.app
v1.gpaelevator.com
gn.grandeurnoiretv.com
headlagao.com
paperscanner.insomniactech.in
jencrites.com
jyotibaby.com
kevindingens.com
hodl.kyrre.moe
lee-projects.com
embd-prod.da.letsdive.io
lightway-app.lightandcover.org
livelipath.com
www.madewithshopify.com
checkout.manifestfinancial.com
dashboard.manifestfinancial.com
morphyish.com
mta-sts.163.gd
bahrain.nationalday.ai
niels-projecten.nl
noties.co.za
app.novi-health.com
nta.ng
painel.oddrive.com.br
pb-vl.s.openkind.me
www.covenantkids.org.nz
www.pennyspree.co.za
pescadopharma.com
petsitterprofile.com
play.pingoo.app
ah-staging.pluskarla.org
dev3.en.ct.porsevej.dk
www.primocar.com.br
www.revie.llc
www.rishithasriya.com
dynamiclinks.roymorgandev.com
www.sages.com
schofield.se
side-quest.life
www.spokesafe.app
admin.ucsa.sportkit.app
nap24h.stv.vn
sugestiva.com
summerdevextreme.com.br
surgimed.pe
bodaivaniayrodrigo.swanmoments.lat
dev.technotriumph.com
www.technotriumph.com
backoffice.thaiqrmenu.com
appdev.theboostmate.com
www.thedot.art
data.thevandeheys.com
test.timetip.app
tolga.app
twdt-wirah.trenchwars.com
www.twinjaysltd.com
urban1der.com
vicbooth.vicoustic.com
vitahani.com
onduty.watermarkgohealthid.com
wiitapmotors.com
antigaspi.wisty.fr
wolfpackrtc.com
yolelefoods.com
Other domains in certificate