Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cwidafor.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 20, 2025
Valid Until
January 18, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:A1:B3:A8:13:19:22:EF:DA:F6:47:D2:99:78:52:91:80:68:A5:F6:BF:23:21:21:E6:00:C4:C3:19:56:F0:FA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tawalab.tn
www.ahqaf.co
ai-checker.dev
alertas.com.br
aprendaesp32.com.br
www.bitcrumbs.ca
blango.co
bldrtrack.com
www.bldrtrack.com
brainflake.net
brettbowker.com
www.busico.net
qa.casayhueque.org
chollosmaniacos.com
chromnos.me
cloudsecurely.com
app.ancy.co.in
skyquote-skycart.skyquote.co.in
2cpus.co.kr
ainterest.co.kr
cogcg.org
admin.demo.connectsx.com
corusen.com
creditsingh.com
cwidafor.com
www.dappertechnologies.com
tracker-admin.dbs.cl
www.raport-pracy.dedyn.io
www.deltaprompt.ai
www.deluxemurals.com
mosaic.demaio.io
www.codenames.dkamdar.com
landing.duodecimstudio.com.ar
www.e1group.vn
escape-envelope.co.uk
www.estancosdistillingcompany.com
admin-staging.fanr.io
findingjoshua.net
garim.geracao.dev
greenfilterusa.com
hoppyrun.site
impk.ca
rqam-ced.jec-digital.com
www.jeetprksh.com
j.jims.net
kamerakennus.fi
kamila-owczarek.pl
kultivoia.com
tkc.lfv.jp
auth.life-leap.jp
linke.kr
solar.lithaco.net
www.liveplanet.com.br
marc-wieser.fr
matriculaimplacavel.com.br
matthaddon.co.uk
maxi-xlri.in
app.medikquiz.com
www.meshahid.me
muttleycru.co.uk
crs.mykalamassery.in
neumobot.net
www.ngomsoftengine.com
openmdb.nikx.co
www.nipplease.com
www.nirajthakor.ca
sv-imd.onscene.team
particleinfotech.in
www.petroment.com
photofeels.com
app.pilotfbo.com
www.polytrack.io
qataroutletexhibition.net
www.rentchair.co.za
read.rovareader.com
survey.niflheim.rubyansh.com
customer.safarigemini.com
menufoto.safidev.de
saguji.com
qr.savage-coworking.com
neva.seimeg.com
docs.sensus-processmanagement.com
www.simplaapliko.com
link.skyin.com
mandarinsentosa.smartvending.cloud
wmufootballsw.sqwadhq.com
beta.stockl.io
www.taikobh.com.br
www.thevendorboys.com
toprakyalitim.com
turisto.su
typewriter.express
ukba-kasa.online
vieirarocha.com.br
admin.vinayakamatrimony.com
weareyoultd.co.uk
windirgo.com
wzvpn.io
www.zenith77.com
www.zingcabs.com
Other domains in certificate