Open
Cached
·
4h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.anybodywalking.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1F:E4:C2:6A:6E:D9:06:F6:30:3C:DF:4F:A7:81:82:AE:0E:D8:E1:73:08:A1:65:C8:5B:07:F0:46:76:BD:C1:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
wadla.in
3.0websitedesigns.com
www.abhavyaverma.com
www.agropetsca.com
www.am-devconsulting.com
quotes.antistatique.net
www.anybodywalking.com
www.arthurbaron.fr
www.asbgoodfoods.com
astragrandhall.com
blu11.com
foodmunch.botsedge.com
app.cardioexames.com.br
m.charitableimpact.com
clausal.ai
www.cleanhomepage.com
kimsam.co.kr
www.logicspace.co.th
colloscope.com
deryagenc.com.tr
www.consultoriomarcelladias.com.br
dan-tamas.me
display.deskintelligence.com
doklim.com
easyfurniturehelp.com
projects.eisystems.ie
www.explocladmetalworks.com
lessons.fenlandec.co.uk
fernandoautomoveismg.com.br
portfolio.ferudinato.com
flikaformiga.com
washpost.gatheround.com
demo.georaport.pl
ncov2019.goodhood.sg
www.gouap.es
graphidas.com
holyquraan.com
cotizador.homsy.com.co
admin.hugoamadey.com
humblelogicgames.com
advergames.imxexperience.com
infiniteskydc.com
intuitivedigitalexperience.com
jandrew2020.com
jessjimenez5280.com
jlaivola.fi
kabiri.co
www.keepcalmkeepsafe.co.uk
keystonefamilyseries.com
kiara-drouin.com
kiskert-m.hu
kissconsulting.co.za
kovalsoft.com
labour-dorm.com
liar.fyi
demo.lustertech.net
meditate-ly.com
mesbro-rules.mesbro.in
meuplanooi.com
app.microacquire.com
mill.tokyo
uvildigraad.omkostningsberegner.app.monax.dk
www.monke.no
nantucketselfstore.com
games.nb-inc.jp
www.nzmovemaster.com
portal.perfectbookingsystem.com
physicstube.net
cryptobabyname.pkuhar.com
planetapelicula.com.br
pondytrafficmap.in
databook.power.com
www.profpaulino.com
www.proteinerlabs.com
renterswoe.com
safetacticalwi.com
selfatlas.app
padreefiglio.selfmenu.com.br
selos.pet
www.shipple.app
canarana.gerenciazap.smartmidiasdigitais.com.br
socmed.io
www.soeltech.com
vision.ai.softsmile.com
marketing.solbergairport.com
text.sskplay.com
admin.d1.stx.world
app.tameny.net
www.taprootsoda.com
finance.teevro.com
amoeba.thediners.in
quickreco-dev.thepetdoor.asia
www.tinataxcpa.com
bartap.tungstun.nl
vaagaichikitsalaya.com
app-qa.valueweb.com.mx
vilao.dev
zainalarifin.id
zenaigovernance.com
zipparents.com
Other domains in certificate