Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.theodysvadhyay.co.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 30, 2026
Valid Until
April 30, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:B5:2D:24:8C:78:29:25:4A:C3:52:32:C0:16:E4:4C:E3:3B:D6:4A:FA:A5:4D:09:FF:E7:6F:59:55:C4:AF:83
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
taskaid.io
app.publicis-production.custom.akkio.com
amitpaintings.com
apmf-fabry.org
arribalapasion.com
asadlandscape.com
www.asadlandscape.com
asltechsolutions.com
jobapp.bibekpoudel.com
brickcityhoops.com
aisearch.bshgteam.com
bushi.solutions
butterbread.org
calebinfotech.com
manage-feature-dev.captego.com
carbondalebikeproject.org
careanalytics.co.uk
churr.space
investorportal.cinde.org
www.theodysvadhyay.co.in
www.pluginsoft.co.kr
hitechglazier.co.th
preview.codeheroes.app
coola.co
coststewardship.org
csanchesconsultoria.com.br
www.deletefacebook.me
www.delpierre.net
derox.app
www.dieting-for-engineers.co.uk
www.docsint.com.br
www.domobile.com
ecolier.eu
hub.doc.eluv.io
runner.nerf.emallstudio.com
customer.emanageone.com
www.eurasiasolution.com
www.fffmedia.live
links.finebar.pl
glamgirl.online
msofficechecker.grackledocs.com
gridacademycalabar.com
onlyfansdownloader.grupointernacionalalixa.com
h2financiamento.com.br
questionnaire.release.haleoclinic.com
hodlbonds.io
www.hotelkb.com
admin.ibbnkids.com.br
ibbnkids.com.br
innovativeagroaid.com
itechdesign.me
jonathankoch.net
kobba.io
www.konutyonetimi.com
krewinkelkrijst.nl
lb-solutions.cloud
liszkor.pl
loncenghoki.sbs
mariobabuljak.com
dashboard.menuti.com.br
parceiros-dev.meupetshop.online
www.momtter.jp
www.nagaratharnexus.org
nohapp.it
www.on-fire.io
institutoarco.org.br
www.partens.shop
pinapp.tech
pittystop.com.br
staging.next.playbook.vc
pollamundial.org
owasp-quiz.pspservicesco.com
pxcodex.com
coca-cola-inference-test.roboflow.one
robotaxivspublictransit.com
rocketreachlocal.com
app.scholarathlete.org
sg16finance.com
artemis.sherpa-app.eu
www.shii.fi
sierraspikes.com
signalcall.app
simcheck.ai
auth.slappy.life
stakehex.today
svelta.com.br
www.takipixel.art
tapprohandyman.com
tech-tools.dev
tourbridger.com
merchant.trenios.com
vendmaxsales.com
www.vololo.io
w1ng.fun
wakuwakustudyworld.co.jp
weald.world
wide24.ru
basma.yallabena.online
yallabena.online
zugoe.com
Other domains in certificate