Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=v1.themitchinghour.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 17, 2026
Valid Until
April 17, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:EA:12:88:96:40:AD:08:14:84:C4:F7:56:78:BD:7F:36:F6:F6:2B:B4:3F:E4:3D:6C:92:DE:CB:04:6B:9E:50
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
whirl.digital
aleppoexpocenter.com
allapace.it
www.atadtakaritas.hu
atrugo.com
bellablueevents.co.uk
app.test.bitstack.fr
fr.buildongroup.com
www.buildongroup.com
tx-seiyukai.chance-store.jp
dash-dev.churned.io
www.cloudbs.dev
mte.tlchealthcare.co.kr
kadi.bongocloud.co.tz
cocktale.app
happy-food.codeserk.es
show-java.codezero.xyz
www.codingaimers.in
dev-privacy.colavo.kr
patrium.cole.la
www.constructionadminspecialists.com
ilogs.curiosityforall.org
decisionrules.io
fish-bowl1.droov.io
einfach-anstellen.de
www.elgabinetesecreto.com
fancylab.eu
www.filipearruda.com
fundacionmasmusic.com
georghempel.de
interviewbuster.glimsiaglobal.com
ayuda.handy.la
rca-demo.holterwebagency.com
www.hyphenrealty.in
www.igrisk.co.za
www.informax.solutions
irreverentlabs.com
www.irreverentlabs.com
iskcongadeigiri.org
www.iskcongadeigiri.org
jayce.life
jorgesalgado.dev
mdconverter.ktw.jp
console.kumunua.kr
lacuchilla.com.br
mtfb-dev.da.letsdive.io
vibe.liv.kr
loahoctienganh.store
ul.lotuschat.vn
internetradio.markapp.xyz
mi.marssolution.io
www.mennin.net
mittauspyykko.fi
www.mountainmarathonfestival.com
murugantextiles.in
nicolatemplates.com
norangebit.me
nowsrl.io
peakdesignco.com
barespai.pedidomovil.es
pegasuspool.info
console.pubgam.com
direct.quranbook.co.za
rahulsood.com
ratrun.net
business.reinspiro.com
url.rgit.uk
rizalic.com
www.rovenglobal.com
ruhiithecloudkitchen.com
www.sanjayc.net
body-stats.saschahaller.de
smkterpadumadina.sch.id
www.sheikhandqazi.com
simcreart.mx
funny.sintlambertusvrienden.be
app-mts-ssu.sistemasimo.com.br
s.sktnugu.com
steinmetzreuter.de
sybrenjanssen.com
www.systoic.com
tachotools.com
admin.dev.tagntrac.io
www.teampee.org
techfarm.tf
v1.themitchinghour.com
theusrah.com
three.do
www.tvcareservice.in
utabami.com
verraes.net
viditamahesheka.com
auth.dev.viewscreen.io
www.way2lab.com
weekly-option.com
wespeakrobot.com
www.whooop.jp
wit.ooo
www.yaknepal.com
zenonbooking.it
Other domains in certificate