Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.joinsift.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 14, 2026
Valid Until
July 13, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C9:3F:4A:29:DA:87:3A:84:20:84:04:94:B1:C9:80:4C:B8:1A:77:CF:50:FB:09:D5:60:87:B8:E1:55:A1:32:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
theflavourphilosopher.com
www.2rook.ai
stylefinder.aicloudconsult.com
join.andrej-homann.de
app.angular.fun
appi.day
axelsecops.com
portal.balderip.com
beforethecompetition.com
www.bitronicsadapters.com
office.bizprocess.net
blushbyragini.com
www.blushbyragini.com
sound.boardrunners.com
audiov.brandabol.com
www.brixen.cloud
insightek.careergpt.in
insightekgc.careergpt.in
qr.cartag.in
codecraft.no
ui.sociallife.codedivision.com
dev.condomio.co
www.cosmicentropy.it
www.cosmicentropy.space
preprod.cryptorates.ph
www.dhermik.com.br
dotbuilder.tech
demo.drimgar.com
uat-servitium.finncub.com
www.fixter.org
auth.flambeaudx.net
flmarketplace.org
app.frosty.rocks
www.giuseppeciotta.net
www.gobluehoseathleticcamps.com
manage.goodwheel.work
www.gwelanfenten.co.uk
console-test.hefringmarine.com
helloh.jp
www.holusion.com
saregrupomexico.inter.mx
itzlyt.com
chat.jill9.com
www.joinsift.co.uk
justdebateclub.org
kanopaie.kanoma.fr
kennygt51.dev
portfolio.kvin.dev
www.liamhorne.com
solar.lithaco.net
www.lonelydogrecords.com
www.lualearning.org
mathleteprep.com
mauricionoj.com
www.melihkuru.dev
miekii.apps.metaa.dev
valhalla.mibot.cl
mm18plus.com
www.mm18plus.com
arm.morgansolar.xyz
manager.stg.mymagicchat.com
admin.mypaidbills.com
www.naturalspamadurai.in
nickgaroufalis.com
www.notebook-lm.online
offpeaks.es
oliviacrites.com
onlinetutoraustralia.com
dekbeddiscounter.ontvangbrochure.nl
app.pianowithjojo.com
www.play-sheeple.com
poetive.com
www.printboda.com
www.pullgain.com
www.qualifast.bg
rachit.online
www.recipe-data.com
redlionlabs.co
www.rxremedies.in
pool-dashboard.saltapp.online
shakthiinfotech.in
www.sifty52.eu
portal.sonoapp.page
www.swiftlab.co.uk
swillfam.com
online.talevation.com
tally120.com
admin.team369stake.org
thealley-menu.com
www.thediamondcleaning.com
bombayspirits.thediners.in
topperify.ai
links.trevber.com
www.tsun.tw
odot.vallrsol.com
admin.videografonbudget.se
link.voxabular.com
app.prod.whatson-pay.com
ypass.yelcat.ru
app-stage.youareaceo.com
Other domains in certificate