Open
Cached
·
1m ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=account.pharmaawards.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 25, 2025
Valid Until
January 23, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:6E:4F:E7:5C:CC:8F:FA:F7:BD:E3:26:B2:82:4E:14:A9:BB:B4:C4:D0:2B:37:5B:20:76:FC:82:60:DF:D5:06
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tuckerhansen.com
acornsoft.uk
adelinedelbecq.com
www.ahaevent.org
www.anocoinmarket.com
link.arkd.games
everysingleone.ashreinu.app
www.audiyo.xyz
aumarket.link
www.axiomatec.com
ayu-rashmi.com
backerberry.com
staging.bizmate2u.com
www.camarasviales.com
platform.test.campable.com
stories.captureinnovation.se
gcp-us-east1-03.dev.app.carto.com
creator.cartoboutique.com
guia.competsa.com
app.corriehealth.com
www.dare2.digital
www.degenfatcats.com
www.drbhatticlinic.com
app.droemmehavet.dk
open.easyglam.es
padres.edutecnia.cl
www.emilionemusic.com
www.enorm.app
erenotoyedekparca.com
evernest.io
app.exprzn.com
extrabitsoftware.com
www.findmywod.com
www.frigg.io
www.g-tomic.com
gamemic.com
villa.geekylab.com
staging.hangfruit.com
say.hihealth.de
api.hoppr.com.au
nbg-auth.ibep-prod.com
innebandycuper.nu
logowanie.opracowania-itg.inpl.work
wine.j1n.uk
jblomster.com
jskwwc.com
sub.jurgensvds.com
s.kubo.show
auth.kurobi.io
web.kursfortegnelse.no
appdev.latpay.net
www.lazyladle.com
www.litgamers.org
dl.lockedcard.com
maplesymbols.com
matiascortes.com
mereaux.org
www.misterburlap.com
prod.myndlift.com
oceaniclinks.com
app.omnivers.ai
bitum.oz-tms.com
www.palazzogrossi.com
dashboard.dev.passbuy.com
penthestreets.com
account.pharmaawards.co.uk
piecole.com
docs.purescale.ai
www.range-booker.de
app.report7.co
respirabiobio.cl
retirementsavingsplantool.com
riveraburguer.com.br
5e.romo.sh
rung.fund
app-dev.salientmotion.com
sapsalesforceintegration.com
scala.dev
www.seegym.com
in.shadowsoft.uk
sharjeelshah.in
user.silkroadanimation.com
www.singhhersh.com
sildikonvalley.smartby.dev
sonatico.com
audit.sou.com.br
cvcf.strollhere.com
auth-dev.swivl.tech
thebellemontnewyork.com
thientd.dev
partner.tixologi.com
www.tofs.app
www.tonsoffuntravel.info
verification-browser-sdk.review.trustdock.io
vocalita.com
hmg.portal.whistleon.com
wildflowertech.dev
xswap.link
client.ydtechs.com
www.zere.ai
Other domains in certificate