Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.martinwahlberg.no
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:A2:ED:9F:F0:69:5E:EC:5B:A4:41:1F:25:E9:EB:35:0A:09:DC:0B:B6:64:47:60:BC:B5:5E:D0:9D:15:3C:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
udamsaini.com
11521525.peerly.app
cway.28east.co.za
www.abdullamobiles.shop
qa-static.3rdanniversary.ac-pocketcamp.com
tvs-admin.acuizen.com
tvs.acuizen.com
omc.adiop.com
www.andrewfiel.me
arpimakeover.com
www.atomo.app
online.atsu.ge
meet.beekmarks.com
dashboard.beepforhelp.com
bin-day-bot.com
www.blocer.app
www.blupeyi.fr
www.chrisw.app
citraendo.com
staging.cityscour.app
closedcaptionconverter.com
www.copybara.org
countycollector.app
cryptofees.eu
cuidadoemcasa.pt
curedub.net
dailyrewardx.com
www.datalayer.ca
www.deepsixdesign.com
www.drunkenfoozball.com
fdo.dev
dev.fetchconsultant.com
admin.findoc.es
auth.fixngo.tn
geekosophers.com
gestaltarchive.com
www.grace.app
gwgreenltd.co.uk
hab-tec.com
www.haricab.in
mariage.hillou.fr
hydrae.lu
ilutor.com
www.importdoc.com
auth.ineveranswer.com
game.iterativ.ch
itscatwu.com
www.jefferey.dev
jind.ro
kamubandalya.xyz
vellore.kishoredroptaxi.com
join-beta.kokomonster.com
komandaqr-app.ro
www.kparinos.gr
joyandcraft.leonbayliss.com
www.leonbayliss.com
www.lonelyraids.com
www.lovefairplay.com
www.martinwahlberg.no
solusek.matthewforrest.co.uk
www.mayolakehoa.com
mdubowskidesigns.com
www.mindpack.com
mp.moneyprep.com
contacto-rtx.noeldp.com
planning.nutrien.dev
www.kpop.onlymilan.fans
formation.paul-wery.fr
create.peekaphonegame.com
pegasusservicespk.com
adnova.privech.com
purescale.ai
www.ritn.tv
connect-ng-registration.rxoconnectuat.rxo.com
driver.safetyinminutes.ca
dev.sattaliveresults.com
shellrean.id
orango.preview.shortwave-staging.com
www.sitestoreweb.com
slyn.com.mx
squarejumpers.com
copypaste.stingrey.xyz
test1.stunlo.com
knezevicduenaswedding.swanmoments.lat
tangentialsoup.com
www.taptaptap.studio
www.tehnickipregledoliver.rs
links-dev.theforeapp.com
thesargeapp.com
rochemss.timeline.click
locacao.topformaturas.com.br
www.twiss.dev
ulluapp.online
www.vanessagrass.com
vokac.dev
www.courses.vyeron.com
xpacross.xyz
yathraguruji.com
www.dashboard.yibimarket.com
painel.yourder.com.br
Other domains in certificate