Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.gowiththeglow.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:74:8F:06:97:C0:99:2D:47:A1:D2:FB:18:C3:71:03:5D:DA:FC:B3:11:4D:C5:F5:79:A2:97:82:86:12:EE:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
wardice.club
novasgestoes.acesso.center
adversight.com
africanwomenamplified.com
afterword.co
www.agentwallace.com
aiproductivity.co
andemllc.com
ar3consultores.com
arkanna.app
www.ascendia-co.com
asoftwarrior.com
www.atlsalsacongress.com
piano.babaaman.com
balicafeandrestaurantco.com
www.bigshart.com
calc.blankstate.ai
brand.bozheime.com
www.brianemch.com
bysehwanpark.com
www.cardanocafeteria.com
cenkayyigit.com
cerroamay.org
freetrial.chronostimetracking.com
cts-uni-prod-api.closedcaptionconverter.com
www.codeofeverything.com
wiki.codyhowell.dev
www.medicalhelper.com.tw
www.comradecareerinstitute.com
app.cuidarte.co
www.curdlegame.com
dashrecon.com
link.dragonacecasino.com
www.eggriceadda.com
vih-link.ehubstar.com
elmhillfarm.com
emilysrunning.app
entangledfuture.com
www.estrada.io
firestonehandcarwash.com
dev-login.firialabs.com
fundables.app
globalambitionsvc.com
www.gowiththeglow.ca
www.guardrisk-events.co.za
chat.hasucco.com
www.hillscreators.com
htxbrakes.com
impactdrivendevelopment.com
titleboxing.impactwrap.com
infocrowdsource.com
examen.atracciondetalento-dev.inter.mx
iprocure.ae
www.itreum.me
kamiru.app
keffs.com.br
datacapacity.keshif.me
www.keval.io
moldlab.kon-sys.net
www.kuraseru.co.jp
laviwoodsculpting.com
legacycoach.us
process.legalsnoi.com
www.app.letsaspiro.com
link-dev.lowkeychat.com
english.corona.mayamd.ai
invite.meetnepali.com
mispeld.com
www.navipointhealth.com
admin-dev.neovault.app
nestimatic.com
neurohire.ai
nimblenotions.ca
nithinprasad.com
nunixsoft.com
omnigrowfy.com
webstore.saz.org.zw
perfect108.com
console.plancknetwork.com
presidentialrenovations.com
proove.app
ravivermawriter.com
www.recipeo.cz
remonrv.com
rint-nadlan.com
rpgtokens.com
rrtechsmartsolution.com
www.schaeferm.dev
shogogeek.com
content.startyourownisp.com
sgg.supervisor.center
www.transparentnote.com
ekstep.trustin.app
tundratap.me
sa.upw.li
www.vahaka.com
volunteersforseniors.org
wsbsynth.com
yembo.link
www.zeitgeistenergy.com
Other domains in certificate