Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=trailfinderproject.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 27, 2025
Valid Until
March 27, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:F5:5A:F6:AE:10:8A:3C:F0:DB:19:DF:B3:6F:22:0A:30:76:78:6D:73:C7:51:AB:4B:E7:E7:89:66:D1:9B:BB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
verse-bid.com
22d.link
2neighborsgames.com
on.ambarmemories.com
math.aquibm.com
copihuedeoro.ar13.cl
www.autovist.com.br
www.ayos.me
beecoelevators.com
www.bhavbejo.com
www.bigtuneclub.com
catalogo.bindimport.com
www.boratltd.com
www.brooksidequant.com
www.cherishtables.com
chillchezcharlee.com
chiribogabros.com
www.citylet.com.au
cloudlesstech.cl
www.mydegree.co.il
colimatch.com
inventory.dewsteam.com
dietitiansuparna.com
widgets.dixper.gg
math.stage.doodlelearning-us.com
schoolrukmani.edu.in
www.eol-sets.com
docs.finitechat.com
www.firmfoundation.academy
flopods.com
www.fourteenseventeen.com
frenchlinguisticsinstitute.ca
fyno.com
getuff.com
www.greensmarketingsolutions.com
www.hbs.pl
team.hey-smiley.com
www.holsain.com
www.hpps-uk.com
felag.hsf.fo
iamjosiah.cl
www.itnry.com
jazzjibberish.com
www.jobzogo.com
julianpropst.com
questworlds.karmitsa.fi
app.koicontrol.com
kuraflix.com
lagloriaesdelsenor.com
learnaihub.ai
www.loomyna.com
imanager.lshub.net
lukesw.net
auth-dev.magoo.app
mamiesuncuento.com.co
www.mamiesuncuento.com.co
dev.mlaw.ai
www.mphcassociation.ca
otf.munix.ai
dynamic-links-prod.my-neighbours.com
n-lib.com
eustis.opendata.report
test.orbiedtech.app
pancakehat.dev
www.philipmathen.de
www.planera.org
gwappadmin.procurementmonitor.org
www.radiotiempodedios.cl
raunak.me
auth.relative-ci.com
rstadvisors.in
www.saborefe.com.br
saibeauty.com
sa.scottbensonmba.com
international.semac.app
sepiapotato.nl
serranoburger.com.br
shervy.ca
sitiocasadepedra.com.br
siyamcapital.com
slim-verzekerd.be
sterlinglutheranalaska.org
syzygy.lol
app.alpha.tara.ai
tekohana.com
thirasaraproducts.com
trailfinderproject.com
traversoft.com
www.travisdockery.com
marketing.trgfiduciary.com
www.trulinote.com
tshilidzi.dev
superapi.tuoferta.cl
www.useboomerang.dev
backoffice.vodium.com
app.warningtemperature.health
www.yamaunlock.com
yamaunlock.com
zaramobils.com
www.zowal.de
Other domains in certificate