Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.angele-event.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 03, 2025
Valid Until
February 01, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:E1:96:32:3E:3F:36:69:D8:13:46:CD:AF:28:6E:61:BA:6C:BA:FA:0C:DD:53:0B:A3:34:FB:2D:7F:9E:79:7D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
websocialshare.com
anketa.13kg.bg
scientificsearch.3diq.com
secure.ahadipay.app
dynamic.allyhealth.app
nordic-mountain.get.alpinemedia.com
www.angele-event.fr
www.anotherbyte.ca
apollocx.com
link.appfurther.io
backoffice.arfight.fr
group-ips.athlas.co
fll.bcastle.net
l.berlinerverlag.com
blackhillonline.com
blondinag.com
www.braintripping.com
www.brainwavelogics.com
adiku.bumikaryaabimana.com
reader.cantook.com
www.classchoose.com
grupomaito.clau.io
app.stio.co.in
tirupathur.yazhdroptaxi.co.in
megatronteknik.com.tr
cuttingweb.co.uk
dark-nucleus.org
darkspark.com.au
shplist-i.dev-ltl-xpo.com
dhanamsurgical.com
remoteaccess.dev-my.dmc-dxi.com
dochub.live
duinerus.co.za
auth.educify.org
event-attribution.gassets.emarsys.net
www.exceeders.com
ebookapp.expertsdomain.com
foodstreetpk.com
freshpanda.pl
gavrilenko.us
flutter.getblood.com
getvira.co
www.gravitonweb.com
john.gusurban.com
haffnerpaint.com
brokers.helloteca.com
www.hermandapp.com
hewhamilton.com
admin.hoosocials.com
www.hotappsnearby.com
ianloic.com
icarus-project.uk
auth.parents.inexus-co.com
www.intraquest.nl
jamesanthonysearcy.com
link-tin-chak.jec-digital.com
auth.kamoky.com
kanata.boo
www.kiamagog.com
lesharpons.net
lftek.com.br
loc8.in
sparklight.madhive.com
marcelodebortoli.com
maxicare.medgrocer.com
www.merrimackathleticsclinics.com
www.mickysgeneral.com
dev.firebase.minnano-kakeibo.com
mirrormotionjeu.com
mtbachelorcommunity.com
app.my-vios.com
www.mycodercorner.com
nimbus-ships.com
www.nsksrc.com
app-staging.nstwellbeingcoach.com
nucleustechworks.com
ooobisidipertners.com
www.oxnamkirk.co.uk
peachycars.com
praiject.com
solution.proctorish.com
www.prototipo.info
auth.ravendawntools.com
dev.know.readysetholiday.co
mapa.reinaldoalguz.com.br
erp.rosoftsavvy.app
signal-ri.org
www.slyde.ai
studygazelle.com
www.svgmovestudio.com
threadsspa.ca
roche2.timeline.click
tulukavillaballester.turnosweb.app
auth.unarmed.io
upwd.us
visualcommunication.agency
www.vitalone.io
wehelpteams.com
www.welldonepapers.com
workforce.wiyak.delivery
Other domains in certificate