SSL Certificate Analysis for warleyd.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=diegofelipemoreno.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 13, 2025

Valid Until

January 11, 2026 64 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

35:97:98:F5:2E:5C:B0:E1:1D:DF:6E:D7:AB:31:FE:10:15:E4:9A:78:1A:F1:04:32:75:CE:CE:7E:3E:0C:CD:07

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

warleyd.com

Other domains in certificate

01soup.com

365organicfood.com

a51.studio

www.aatransportersltd.com

abmdist.com

www.act-app.com

www.afrolister.com

credentials.aimbrella.com

apocha.biz

apuestasperu.top

onetouch-link-tst.astropay.com

www.ayashmuhammadhu.com

share.belifeapp.net

www.boxiao.ca

staging.app.careerbase.co

bird.claudiocampos.com

constructmonitor.online

dev-data-cast.net

diegofelipemoreno.com

boladao.faturou.com.br

favorcoin.club

console.fremby.no

www.gestvet.com

app.getloope.com

graficoimpresores.com

granddroptaxi.com

gripcode.com

hacklodge.org

app.happy-ratings.shop

iamaksharpatel.com

www.jonathanbae.com

koruke.com

www.langdemy.com

leaguelife.net

leggott.co

locagent.ai

lovejoylabs.dev

farmlands.beta.staging.m2x.app

www.marivipiano.com

learn.mdb.dev

beta.medgrocer.io

www.motodey.com

pawsnd.mshguru.com

msmsm.work

www.mst-ka.org

muenchhausen.dev

www.nanami7y.com

ffderp.naqelksa.com

www.natur-institut.eu

naturenibilder.se

app.neurohive.eu

test.nexonen.com

nutrikey.gr

www.ocufox.com

openux.io

optionmaster.optionenhandeln.ch

cancun.pedidomovil.es

www.pensioenbijrafti.nl

card.pep-rg.jp

pinknailsbiddeford.com

programmingpablo.com

m.proper-ly.com

psychologischezorgopmaat.be

raskraspryanik.ru

rawdings.com

fabric.rcloud.dev

www.rentokoti.fi

rhimtec.com

www.salaazul.pt

scramblegolf.app

stage.set.live

sikai.li

bug.slmandic.app

raiderscontest.sqwadhq.com

christmas.stlwebdeveloper.com

www.stockrepublic.fi

flexify-html.stylokit.com

swinglinefarm.com

auth.teero.com

thegrantsinstitute.com

googlephotosalbumsearcher.thomasclark.app

pixels.topi.dev

www.tornhult.se

phangan.tortugacoders.com

blog.touristadvisor.ro

truestory.show

turfhq.com

www.turfmama.com

app.unifize.com

www.urvivora.com

veeaccounts.co.za

cloud.vipark.pl

vocard.app

l.waik.hu

wyk.app

yorubo.com

yourjapaneseacademia.com

sandbox.yulamove.com