Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dndbattle.aadu.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 18, 2025
Valid Until
January 16, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:56:1E:21:CC:00:82:3B:9E:4F:9D:83:8C:1C:1C:F0:AC:92:B4:32:21:F2:FA:8A:96:F2:02:79:FF:E3:BC:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
virtualhotseat.com
dndbattle.aadu.dev
www.amrysipr.com
demo.ansonpower.com
anusha.dev
auth.aptitude-tests.co.uk
australiankitchendesign.com
aiagent.avintis.co.nz
communityday.awsugnsk.in
baileybutler.com
basedmathgame.com
www.beard.ink
www.bnbuddy.com
www.bobbybrockinsurance.com
beauty.boddess.in
bolar.app
browar-balans.pl
nicenamer.champayne.net
chanterpanterpubquizzes.nl
stories.chongwaldo.com
harikesh.co.in
vmportal.freshup.com.hk
conduzweb.com.br
decasajuarez.com
defikingdoms.com
www.diklara.de
dwightworley.me
engenious.pl
www.enjoyallelements.com
shop.eternalleague.com
sangrah.fitcoder.in
flightsnap.com
dev.fluttermasters.dev
www.gatesitsolutions.com
suggestions.gerstell.org
dawn.gingerfocus.dev
globaldiamondcenter.com
goranaconstruction.ca
hilbertpress.org
crm.hospiz-verlag.de
www.hunt4hf.org
ijazsaleem.com
inscrib3.com
ttw.jakobsponholz.de
open.jobpass.me
aregonde.jorigine.fr
www.juice.tools
www.kfkbattalion.ca
www.kimo-gaessler.de
dl.klynf.com
www.kokoro.moe
lozanomiguel.dev
minecraftcrafting.online
moneylovingmonkeys.fun
propertycrm.morecreatives.net
www.mustangdds.com
betonreadymixbandung.mrizk.my.id
navygatio.com
nwlincolncoc.us
www.oacomics.com
www.orangeflags.dev
www.phasmodex.com
www.piaogerik.no
poetical.design
rabbithole.fr
collector.reachus.dev
rompathlete.com
route9games.com
app.rxwantbook.com
appv2.searchviu.com
app-staging.shopnoshable.com
sitesbybrandon.com
admin.squidgets.com
kanye.stevemaguire.dev
stitchstory.uk
www.stridecode.com
terapia3fala.pl
www.thaiflights.info
thomsonkernel.com
toiro.com
www.tonymoura.com
tritogether.net
vilkas.turnosweb.app
console.simulads.dev.ultraimpression.dev
spam.unicornads.com
unvinoaldia.com
www.upo-devices.com
merchant.usdtify.com
residencymatch.usmlesarthi.com
track.varend.in
veratechsoft.com
www.veratechsoft.com
gabi.waze.com
www.weathersea.com
wenhop.space
referrals.westhavensolar.com
sponsor.wicawards.ie
www.yaale.com.au
pontonosparceiros.yesmktg.net
sustainability-ldscp.zatsit.fr
Other domains in certificate