Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dashboard.marmitanaestrada.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
90:F9:E3:C5:66:C5:BF:2C:88:B2:0F:37:9F:E0:D7:01:2C:B8:04:C7:F9:1D:AD:E3:22:A9:2C:FE:CD:2D:0A:88
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
warrior.fyi
24cafe.ca
3060.gamefp.dev
dev.portal.adgile.media
adriencanino.com
akhil-design.in
alexnewby.com
www.alumind.co.uk
www.appletree.io
asteri.asteri.me
bestellen.athenpizzeria.de
ayojudi.org
bardiai.com
www.birapi.com
www.orbus.bmgomg.com
bonzi-avocat.fr
brsth.com
mg-lbs.at.calculatorhub.app
calculatorwidgetpro.app
climate.id
colortimer.us
converselog.com
ac-auto-s.dev-ltl-xpo.com
roomplanner.dorelhome.com
www.dramos.dev
cvctool.ebrwise.com
elixnext.es
eventify.cl
fayafree.com
dev.firapay.fira.fi
furnaceassociates.in
galaxy-cleaner.com
www.gctechhub.com
getcreators.store
brlabs.giroto.dev
arena.globalwomanlounge.com
www.goodie.guide
hagelapp.de
virtualcare.healthgauge.com
ignitevfx.co.uk
ivoire-it.com
jaduandmitracolony.in
conference.jourfixed.com
kevincittadini.dev
www.fosc.khaleejtimesevents.com
julia.ladasoap.com
www.ladycontreras.com
www.lanobleza.com
fatima.lanyu.es
leef-bb.be
miniso.lernit.app
dashboard.marmitanaestrada.com
martosmotorsport.es
mensa-leipzig.de
gcc.monolithia.global
update.msoft-sa.com
station-manager-sandbox.mylock.es
app.nexhance.com
ogado.app
overlistapp.com
www.pivotalvaluedata.com
www.preztamos.com
dashboard.ratality.com
xmas.reblochor.dev
rghglobal.in
santoshray.in
sardal-dubai-chocolates.be
www.senna46.com
staffs.sfscollege.in
www.smggida.com
dlife.sogafit.net
www.sosharu.com
www.stranahanfund.com
streamultimate.gg
www.strim.in
strokesbymo.art
impact-social.studylink.fr
www.sushealyoga.com
balancesheet.techaroha.com
www.themindfighter.in
tithichandrika.app
www.tomyum.dev
sharing.labs.tozny.com
admin.tradnary.com
www.trainerswap.com
app.treesoft.io
display.turnosweb.app
globalcompact.un75.online
uupp.app
vendetucaballo.com.mx
icri1.vidocto.com
www.vinylgrooves.uk
delivery.watersedge.lk
corehandf.webplayer.fit
welldonepapers.com
willdunkl.in
wipist.com
yamber.co
yii.im
staging.zaiteck.com
Other domains in certificate