Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wjin.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 10, 2026
Valid Until
June 08, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
87:4A:5F:2F:3B:81:A5:A5:20:06:E2:4A:60:EB:99:43:A8:F5:B5:EE:16:B1:52:48:F8:EF:D8:93:6E:7A:43:F8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thoughtsofmike.com
41studiodigital.com.br
meidentsu.anbi-reception.jp
mimihouse.appnho.com
fray.bange.app
www.bega.com.tr
www.blackpool.one
bladi-go.com
client17.citadel.tools
clubonline247.com
codafel.com
ocd-admin.codecapsule.cc
i-ching.codeserk.es
citypulse.column.us
links.delori.io
www.dpositive.net
kanyakumari.dropmeoneway.com
auth.dynamc.link
www.ecemakin.com
projects.eneawork.it
escolinhajosedelbeltrao.com.br
f2f.exchange
fairprice365.in
beyza.falcininkahvesi.com
www.fantasycafe.us
login.trade.febrafar.com.br
www.fintelligent.me
rtm-test.foresitehealthcare.net
gakuseidreamer.com
gcom.co.il
devfest.gdgdouala.org
devfest2022.gdgdouala.org
gonzalezsalazar.com
sims.goodturn.one
teach.goodturn.one
grupogalea.com.br
heilpraktiker-heitersheim.de
huellasartedeportecultura.org
ihsanyurekli.com.tr
ivanga.me
hearmeout.kanini.top
kine-microkine-allain.fr
www.kodewerk.io
www.kshitijks.com
lightlysalted.uk
www.linds.world
app.linkface.net.br
www.my.maare.app
www.mainlinecrafts.com
mathiasmilsgaard.dk
maxmagroup.co.za
admin.naturedosh.com
dev.nextcoders.pro
headoffice.nii.nz
opsim.site
dg.overview.one
saona.overview.one
prod-pixadmin.pixpay.app
premiersoftinc.com
prioritizeapp.com
clinic.prodexly.app
psgmx.tech
ng2.robertocannella.com
runsheetpro.com
sakazuki.xyz
www.sasandha.org
www.seedshare.io
seismicauto.com
www.sekilasaja.com
sensetheai.com
login.smidra.com
soarmovement.org
sonat.com
auth.spygpt.ai
stage-phonesupport.starkey.com
supersorteo.fun
www.tantei.lol
taxes-usa.site
resume.tbun.dev
www.tc-schoenbach.de
tedxbitd.com
telegramsexchat.com
thelema.com.br
admin.thelibraryhub.in
analytics.api4.thorbooking.com
review.thursday.link
stage-v3.tecore-client-cdn.timeedit.net
udubari.org
www.unigreekai.gr
www.unimateapp.com
visualmemories.es
visualmemoriesphoto.com
www.vr.sumy.ua
westniletunes.com
release.williamegomezo.me
wizworks.in
wjin.dev
xym-thread.com
yourpetztube.com
admin.zorbeeskitchen.com
Other domains in certificate