Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=wreggo.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9B:0C:1D:83:8B:CF:18:F2:FF:B7:6E:D3:6E:1D:8D:BF:40:E0:20:1D:81:29:62:36:27:2D:1B:D0:BB:C0:C2:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
visufact.com
1123eleven.com
dev.dashboard.claimconnect.4-sure.net
actinius.com
twdown.ahasave.com
manager.aldeacity.com
bfd.andhw.com
go.anycore.com
aonderole.com
www.apolloconnect.com
armacard.ru
casaobra.asap2go.com
asc789.com
owner.baroon.io
clube-fluminense.bepass.com.br
www.birthdayparent.com
panel.bpmcenter.pro
gdomo.breard.org
www.cestaurbana.com
clay10.co.uk
www.claywelldigital.com
www.climatesens.com
clozzy.link
ode.cloudlabs.com.tr
google-home.thomi.com.vn
concordiabank.biz
www.cribster.biz
www.dev.cypherpunkstudio.com
www.danyaltairoski.com
www.dcfarmersmutual.com
dashboard.dfend.app
www.docenate.com
www.dorseywelding.com
www.drrevanthhairclinic.com
elton.codes
mobilelinks.ethiopianairlines.com
eurektickets.com
clickthis.everbloom.app
console.stg.faans.jp
www.fakejiujitsu.com
fallacy.io
gigmoney.com
plantastic.goalpilot.app
www.gopher10.com
www.grahamemurray.com
harmonicmarkets.com
www.helgo.today
www.hennabyharishmi.com
abest-osu.s.hotekan.com
sample-h.b.hotekan.com
hust-cv-202416202.id.vn
tranthanhanhtai.id.vn
idealsst.com.br
kizuner-app.inapps.technology
iterum.nz
at.joom.com
app.lfmusikindo.com
auth.macrosd.app
www.makrosistemas.com.br
marllonbarizao.com
taxipontiac.megataxi.com
meralipharmacy.co.uk
www.mladicro.com
nammed.app
audits-michael.nucor.report
nutriaive.com
www.nuverax.com
staging.admin.nyby.no
akillitahta.ogretimsayfam.com
dev.ooki.co
11521688.peerly.app
penguinpeople.io
peopletransformtheworld.com
docs.pixelcreator.io
pnyo.jp
link.poolwater.app
vsl01.premierfc.app
pulsar.es
vr.puresalmonkaldnes.com
riskey.io
sapphireclinics.net
www.scaccosrl.it
www.seawoodsventures.com
exp.shadowfax.in
opex-app.stg.shippio.jp
vk-fortune.sjt.hu
strikeitgroup.com
stupid.ir
system.stzaiacathedral.org.au
app.suitejar.com
www.thebaycoco.com
admin.thecliq.app
www.tonhozi.com.br
www.tripletise.nl
www.usv.jetzt
venxly.com
iscout.wielewaalgroep.nl
studio.willow-labs.co
wreggo.net
www.zachstgeorge.com
Other domains in certificate