Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=luisitodesign.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:6B:2C:17:7A:12:72:53:20:A1:C5:BB:19:2B:ED:BC:7A:EF:7A:47:62:1D:51:7C:7E:E6:AF:6F:21:4F:98:93
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
texaswithfriendspoker.com
jay-labelers.aimmo.ai
www.akinburak.com
alexisdoli.com
script-maths.alledotech.in
www.alonregev.com
amberleaf-v3.1.studiossolution.com
appeal.anthonynolan.org
supermago.appshare.com.br
berlinurban.com.ar
biddingsq.com
console-development.bigadvice.com
link.biyyik.com
admin.blacktechtalent.org
www.blanquette.io
brownrunningclub.com
atjam.chance-store.jp
cook.chopsushilancaster.com
claywell.digital
www.vrqube.co.in
www.mombezonline.co.zw
www.codingtutor.nyc
hanerkekkuaforu.com.tr
consultatucodigo.com
dincfopartner.dk
dev.dychouston.org
app.easy-budgets.com
www.entregaja.com.br
new.falconconsulting.fr
admin.fc-comms.com
stripe.gatheround.com
dev-app.getkosmos.io
ghettohats.com
go-active.es
comply.gokyolabs.com
golden-needle.dz
go.music.gradedblue.com
gym-bug.com
comparison.homebox.co.uk
homesteadr.co
hulkaudio.com
impexpath.impexology.com
staffauth-pre.inquiron.com
devlinks.interacta.space
niransnarayanan.is-a.dev
www.jimba.cloud
kevinrattan.com
lightmyfyre.com
docs.lovecastapp.com
ludanov.dev
luisitodesign.com
www.makeadrop.com
www.matthewli.com
www.maxlegaluae.com
www.maxmarchuk.com
www.mchughmath.com
binsorudautils.melihhakanpektas.com
administradores.montesrojo.cl
admin.moreapp.dev
www.n1saneeraus.fi
near-balkan.com
gift.neoufitness.com
nevantinservices.com
www.next3trips.com
nipunisiyamb.com
orchidroot.com
admin.oresalo.com
outpostdigitalsolutions.com
pagoschoix.com.mx
palaspandaras.com
piinsightshk.com
www.pixelynt.com
plasticanalytics.com
www.pombo.dev
preggy.health
rapidfork.com
shoryokuka.com
www.shumingchan.com
spare.autos
sparkhousedigital.com
videobox-staging.staffshift.com
stakeconomy.com
steinsaltz.app
www.steppe.app
www.echo.strategicinsights.co.za
app-admin.dev.env.studybuddy.cz
calendar.tannercottle.com
calculator.testingwisely.com
sidecart.thehellopos.com
theperformancedrive.com
thx4playin.com
tourbutler.app
trueking.hk
tuitionsupport.co.uk
vella.uk.com
unisonseijo.com
killergame.uppsalasystemvetare.se
uuid.ing
www.vanago.app
openrcl.yodelit.co
Other domains in certificate