Open
Cached
·
just now
90/100
SECURITY SCORE
Certificate Information
Subject
CN=www.manzarhaq.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:60:B0:29:7F:62:46:87:21:00:8C:55:EA:81:08:E7:8D:1B:D4:63:96:E1:04:B0:20:3C:F0:25:94:41:19:D0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Good
default-src; worker-src; script-src; +10 more
default-src 'self'; worker-src blob:; script-src 'self' 'unsafe-inline' 'unsafe-hashes' https://static.filestackapi.com https://upload.filestackapi.com https://upload-ap-northeast-1.filestackapi.com https://skywalker-28195.firebaseio.com https://test1-engage.firebaseio.com https://chewie-ce7f7.firebaseio.com https://thinktank-ackbar.firebaseio.com https://lando-198f5.firebaseio.com https://thinktank-hi-q-dev.firebaseio.com https://thinktank-staging.firebaseio.com https://thinktank-porkins.firebaseio.com https://apis.google.com https://cdn.pendo.io https://pendo-io-static.storage.googleapis.com https://pendo-static-6301153200504832.storage.googleapis.com https://data.pendo.io https://app.pendo.io https://googletagmanager.com https://www.googletagmanager.com https://login.microsoftonline.com https://login.windows.net https://zoom.us https://static.zdassets.com blob:; child-src 'self' https://youtube.com https://vimeo.com https://login.microsoftonline.com https://login.windows.net https://zoom.us https://b2cgpstg.b2clogin.com https://b2cgpprod.b2clogin.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com https://source.zoom.us; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://static.filestackapi.com https://pendo-io-static.storage.googleapis.com https://pendo-static-6301153200504832.storage.googleapis.com https://app.pendo.io; connect-src 'self' data: blob: https://securetoken.googleapis.com https://firestore.googleapis.com https://identitytoolkit.googleapis.com https://firebasestorage.googleapis.com wss://*.firebaseio.com https://us-central1-skywalker-28195.cloudfunctions.net https://us-central1-test1-engage.cloudfunctions.net https://us-central1-chewie-ce7f7.cloudfunctions.net https://us-central1-thinktank-ackbar.cloudfunctions.net https://us-central1-lando-198f5.cloudfunctions.net https://us-central1-thinktank-hi-q-dev.cloudfunctions.net https://us-central1-thinktank-staging.cloudfunctions.net https://us-central1-thinktank-porkins.cloudfunctions.net https://data.pendo.io https://pendo-io-static.storage.googleapis.com https://app.pendo.io https://static.filestackapi.com https://upload.filestackapi.com https://upload-ap-northeast-1.filestackapi.com https://filestack-uploads-persist-production.s3.amazonaws.com/ https://cdn.filestackcontent.com https://login.microsoftonline.com https://login.windows.net https://b2cgpstg.b2clogin.com https://b2cgpprod.b2clogin.com https://ecs.us1.twilio.com wss://global.vss.twilio.com wss://sdkgw.us1.twilio.com https://*.microsoft.com https://zoom.us https://ekr.zdassets.com https://accenture2061.zendesk.com; img-src 'self' data: blob: https://cdn.pendo.io https://data.pendo.io https://pendo-static-6301153200504832.storage.googleapis.com https://app.pendo.io https://firebasestorage.googleapis.com https://storage.googleapis.com https://static.filestackapi.com https://i.ytimg.com https://cdn.jsdelivr.net; upgrade-insecure-requests; media-src 'self' mediastream: https://firebasestorage.googleapis.com; frame-ancestors 'self' https://teams.microsoft.com; frame-src 'self' https://app.pendo.io; object-src 'none';
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
test1-engage.thinktank.net
3weekwanderlust.com
pipeline.8bitpictures.com
www.8lueberry.com
www.adexas.com
aisportswatch.eu
dev.patient.ambii.com
arepschool.com
www.ataralondon.com
avictimof.com
online.ayyappadevasthanambowenpally.com
glenaan.ballycastle-accommodation.com
www.celikhan.bel.tr
benedekszabolcs.com
www.biemmetecno.com
bigcodegen.com
brasumadre.com
www.brightad.in
buysiderealtor.com
www.nft.bxt.org
chickenbot.com
chrisport.com
attiyaspa.com.my
apharma.com.pl
consolidinc.com
iscz.staging.admin.convercus.io
danfarisato.com
dangolban.com
datedojo.com
discoverycancun.com
bfr.diwima.de
doglog.tech
cef-info.easysignage.app
www.echophotos.io
weblab.encf.do
fishtank.cloud
beta.fundwave.app
beta121.goodydo.cz
gutts.mx
hbbi.cz
mywork.hrmonitor.com
repense.user-auth-dev.huddlebrasil.com
building.hungryforjesus.com
internship.ibranchrecruiters.com
imrenkasap.com
core.inavinfotech.in
app.inga.si
joelweb.ch
kiwifinance.com.au
admin.kvalitetsfisk.se
eva.lernit.app
lewboxing.com
aero-ics-calendar-sync.licarth.com
linda-lmft.com
www.littleheavendaycare.org
www.lucky-strike.jp
center.gamingboard.luxov-connect.com
legal.manifestfinancial.com
www.manzarhaq.com
miguelmosca.com
www.moffitt.app
museeneioslo.no
learnenglish.mythyaverse.com
myworkportal.ie
app.notefield.com
www.omonayajo.com
oorjadevotion.com
fundacionlilianabodoc.org.ar
share.parcoapp.com
www.phhome.in
app.pocket-study.com
auth.stagingapp.precisionprogolf.com
www.preptaxcorp.ca
online-theory.prettysailing.com
proangular.com
www.projectdataflow.com
www.qualityvet.eu
schenider.quant-layer.com
ranexis.com
whatsapp.reachsms.com
app.rentalboatsafety.com
www.ruofanwang.com
lightbulb.shemarlindie.com
www.soundlogicaz.com
specpal.dev
www.admin.startuplogin.com
beta.synkro.co
developers.teamo.io
www.technickclarke.co.uk
textabledev.textable.app
www.thegitaway.com
www.thesfactor.co
throttlecapital.com
www.trisurrey.com
ultimatekandi.co.za
space.unfollowing.com
vodotesnost.cz
www.word-scramble-game.com
wtpa.club
www.yoonseo.shop
Other domains in certificate