Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kathryn.stranex.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 19, 2026
Valid Until
April 19, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A0:80:1A:25:F9:C8:0A:66:B9:66:10:56:15:B1:D8:DC:6F:0A:8B:89:01:60:D5:FC:FA:86:FD:98:31:08:0B:18
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
wareclouds.app
1moreword.com
aetherrising.com
udt.aleoyakas.co.uk
geometric-insights.anagraph.io
anisharon.com
arkham-starter.com
www.atlasendurhaefing.is
atominfo.tech
montpelliervolley.bfsp.app
links.bizbookly.com
login.databits.bobsled-cloud.com
staging.budget-bot.com
bugraalbayrak.com
app.bumpcareers.com
www.can-can.biz
claro.top
app.hippo.com.bo
app.conectacontrol.com
beta.contentmedia.xyz
crewcorecs.com
live.disign.tv
test.driveclear.app
e-duplicate.com
www.epsilon-delta.link
fanicorn.co
financialtravelbuddy.com
link.findmeonradar.com
analytics.fishfacts.com
www.francescopisani.it
www.franfonse.com
www.g3ek.co.uk
gestcook.com
partner.getluup.com
directorio.guiadesexoseguro.org
hanathustra.com
henry-ngan.com
app.hotbody.one
admin.hotelajayinternational.in
user.hotelparivar.com
app.humango.ai
www.shatz.idodon.com
app.infltr.com
app-dev.interplay.io
via-demo.ischoolconnect.com
iybibarberstudio.com
jetpackx.io
jonathonalderman.com
khanyecreativestudios.co.za
www.khilesh.com
app.langduet.com
careers.lazzo.io
sklep.lechstone.pl
lyticsdatalab.leveragelab.com
app.liftup.fitness
www.liist.com
liyunhe.cn
frame.lokalebon.nl
incubate.makkan.trade
www.mapsfacility.com
tupsp.messytable.games
movement-mastering.com
download.mrlondon.app
mybroker.com.co
testapp.myndlift.com
mytbrite.com
www.nicolemedvecka.com
timer.nordheim.digital
v2.experience.pms.sandbox.nowlvble.com
www.opread.com
www.panicindustries.com
www.password.garden
demo.pitcha.ru
refer.mini.playship.com
www.pocurio.com
puzzle.dev
mergeclash.puzzlecats.com
app.test.pyxo.co
realpha.ai
rgwoi.com
o2.skill.rideet.com
www.risexi.com
sso.sanseido.jp
www.sfp.si
dlr-mobility.sharo.io
shinepass.co.za
fb.skeinway.com
www.spacepolux.com
spardhakarnatakaacademy.in
kathryn.stranex.com
app.studeng.es
bier.tanjadejong.com
thepassionatetrader.com
stage.threshold.co
azalea.tokimane.jp
goldulf-dustpunch.urtropedesigns.com
www.vazarchain.com
www.veronicakisakafoundation.org
www.vladretca.dev
www.wkaichan.com
Other domains in certificate