Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=shop.diakiv.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 28, 2026
Valid Until
July 27, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D7:5B:6A:7E:42:AE:B2:A1:B3:79:83:2A:F1:B4:09:19:A0:F6:15:D1:00:23:DE:80:7F:70:D7:16:A2:61:67:FD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
vybear.com
atomia.3dcloud.io
cercoassist-va.adama.com
play.adamleis.com
againwewander.com
www.agrisense.live
webapp.airoc.nl
www.akhilsuthapalli.com
akshithacrackers.com
bunka.alekzen.com
alexbiketrip.com
cardiotools-sfctcv.amarena.solutions
www.ancestralpet.com.br
www.anstrum.com
www.anzevuikick.buzz
invest.apikounis.com
www.apsique.mx
searegs.ardent-training.com
arusuno.com
visiondev.asite.com
ayurvedahealthcentre.com
fantasy.baitingsheep.com
rekordy.barnoforge.pl
booket.co
brucutaburger.com.br
bullfrogads.com
www.callbuddy.app
auth.carelog-app.com
museo.cdg.gob.ar
docs-preview.corz.app
dashboard.courantapp.com
www.davidlovesvirginia.com
shop.diakiv.com
dnbcapital.autos
www.dnbcapital.autos
e1.com.vn
eclipse24.kr
dev.demo.etiolinks.com
app.fabricdna.ai
codex-market.fayegram.com
fitcoder.in
web.fotovoto.app
fyndmyai.com
comp.game-enthusiasts.com
scanner.game-enthusiasts.com
www.gasolinaagora.com.br
gatorallstarcamp.com
testing.getripple.ai
www.gomvion.co.za
www.gospendlocal.com
hoteledilmaslodge.com
housedates.com
blackfriday.howlongto.it
demo.hrdoc.dk
www.ibunka.tv
www.invoiceseasy.com
chevxeron-stage-4.ischoolconnect.com
catalyst.jerboapp.com
jnoor.pk
kaba.bz
konsultasi-gslawfirm.com
kryzano.com
laneonlocation.com
lapid-connenut.com
test.livemarket.top
api.lufer.click
maulikmistryfilms.com
blik.mbitgames.cloud
www.mc-rds.com
order.meedeepos.com
matthew.meetshepherd.com
songquiz.mhslr.de
msm-portal.moloco.cloud
staging.multiplai.co
trial.onepms.net
q-optics.com.ua
softpos-receipt-dev3.qlub.cloud
www.ququ.design
reparadordomestico.com.br
repic.ai.kr
semhekman.nl
www.sharma.ai
tools.shivallix.in
account.ssst.dev
natal.stargazeapp.ru
verification.stayovr.com
tannerstern.com
tavern.art
lojamodelo.themediatrade.com
www.tntlc.ca
typesplit.com
www.victorbaleeiro.com.br
staging-customer-organiser.vidocto.com
www.volkaapp.com
vtssa.com
vvsanghabellary.org
www.wemeal.us
budget.wondaland.studio
yaherd.co
auth.zivaai.co
Other domains in certificate