Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.barbershopdenimphilly.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 15, 2025
Valid Until
February 13, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7C:DD:81:64:90:31:54:85:38:B6:01:CC:CA:4B:62:B3:6E:05:6C:F1:6A:3A:8B:25:5B:5D:8F:26:23:6C:1D:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
touchnut.com
art-appreciation.shinshu-u.ac.jp
accessi.pro
app.achim.app
www.americaoffbalance.org
amirhosseinseifi.ir
www.andfriends.io
anitafliervoet.nl
dev.aquaroseirrigation.com
askmadhav.com
bandnfts.com
www.barbershopdenimphilly.com
www.bastropcode.com
bawnorton.com
www.beeding.com
billbuffer.app
app-beta.care4giver.com
cesariux2596.dev
www.cetplote.com
katanga.chastenzm.com
clockinly.com
linkshare.collegeek.com
www.kandurataclothing.com.lk
m.creditea.es
dagdedektor.com
delvcareers.com
dytgozdedincel.com
sales.ed.energy
edm-marble.com
eduquiz-hub.com
games.expritan.com
api.finvari.com
www.fladmin.app
www.funneled.app
gamesmith.in
garpe.mx
gemme-belgium.be
app.genevaprotection.com
greenhousespa.app
www.greenlinetradelogistics.com
oyun.hakantunc.com
hexcheck.com
epartner.hikvision.lk
hugopinho.com.br
www.shan.in.net
votacaoeletronica.inf.br
influex.app
music.jackjoynson.co.uk
jb-asesores.com
jesus.kr
jewellerycalculator.in
www.jonathanshaw.com
www.jotit.us
kaveritaidot.fi
pqs-sturen-op-resultaat.koenenenco.nl
kokweng.net
www.lascable.com
blog.letsdiy.club
app.lydul.com
jpo.m-gospelacademy.com
applink.macritchie.io
www.maissimples.com.br
matteocalva.dev
www.maxceltrading.com
www.milseansoftware.com
modulux.fr
app.dev.mozome.com
www.mudo-chungdokwan.com
myneuronest.com.au
nerdtodo.com
ondrej-toman.cz
dynamic.oolo.uk
elements.otavioalves.com
www.pearlbea.com
michkalee.phros.ca
pipl.app
playfuleyes.fun
order.plot.farm
productiveapps.co.uk
www.quickgrade.app
cha.art.relyt.app
app.restartonline.kz
sebastianmoreno.se
www.shameless.art
www.siluana.fr
sims-angels.com
www.sweetgrassteachings.com
tandooricuisinegeelong.com.au
tashatmans.com
www.triperion.com
community.tulu.io
mugen-serial.ufotable.app
jstest.vanblaricom.com
e.verevio.com
internal.visionfi.ai
www.vr1.pt
quiz.wahni.com
wildwoodmfg.com
worldof.music
zakatlist.zubairv.com
Other domains in certificate