Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.vfthome.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 04, 2026
Valid Until
May 05, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DC:23:A6:7B:36:A3:64:99:1C:47:C9:E1:73:66:7C:7A:80:21:B1:D3:14:81:FD:42:4C:7C:4E:4B:6F:4B:4F:4E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tezotopia.com
auth.1nga.com
matlas.1nga.com
lowes-bom-recipes-prod.3dcloud.io
wopr.agarithm.com
ahmed-faisal.net
aiof.ch
www.allsidesin.com
meudinheiro.amarflex.com.br
annapurnasweet.com
pool.atomminer.com
transport.azulparadise.com
dev-next.eckard.bitstudios.dev
www.byrumwoods.org
eskole.ccwc.io
www.choicewizardry.com
www.gorillasports.com.ua
www.crainicu.com
dev.crm.cryptonow.ng
documentos.cydocs.cl
www.dahbloc.com
v2-dev.digiqc.com
www.chris.dougliu.com
admin.durin.co
login.durin.co
padres.staging.edutecnia.cl
www.ensemblejupiter.com
ericliu.dev
link.factsumo.com
hakkahangul.far.st
www.funkydraw.com
games.gregpollock.net
gridironofstrategy.com
hati-v.com
www.hehim.ca
show.iagreetotheterms.com
api.importdoc.com
industria-ramos.com
netcabs-hub-test1.ingogodev.net
nomad.irondevz.com
jerseymercedes.com
link.joinregimen.com
jonathanmcwilliam.com
www.jondeeltd.com
hestan.kitchen-smart.com
www.letsbuildutopia.com
admin.minibiz.lilas.solutions
www.lisesavard.com
lorcana-api.com
markcadaverolcsw.com
mbitgames.cloud
links.milluu.com
sports.moraspirit.com
muplab.com
www.myestatesgroup.com
web.neoprep.in
newworld.earth
dear2021.okanohikari.com
3p.oktostage.com
onlinedoctor.sg
www.onlinedoctor.sg
www.ossapp.com.au
paellagourmetexpress.com
pastoresramirez.com
pixelartdraw.com
pixtangle.com
pranahomenursing.com
qsnich.app
classic.quoteninja.com
www.radiodemon.com
utility.raghavendergangula.com
newsletters.recruitingmonk.com
secure.dev.rethinkworkflow.com
timeline.games.rochenet.au
www.rodacecare.online
drink-menu.sam-redmond.com
app.sanoyes.com
demo.members.sargon.com
sbcshooters.id
qr.scanlyapp.pro
seaty.app
seotaiwanseo.com
shard.studio
shp.house
sistema-academico-utec-edu.academy
smplabs.com
soccerexpressionz.com
sociilaw.com
www.speyerholding.com
social69.tak.today
www.torchlightyouthmentoring.org
quiz.van-amstel.de
www.vfthome.com
api.waveride.co
wavesplay.com
wedbro.com
wewish.app
wishtack.com
app.youfreakingnoob.com
pics.zambezi.ltd
Other domains in certificate