Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.midmoon.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:1D:69:2E:C6:34:64:FF:2B:39:59:78:A9:0F:6B:42:8A:4A:9B:D6:7F:7F:D1:85:54:79:B7:3C:BF:3D:04:0C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
wl.waitly.com
adonn.in
www.aistreamline.com
alsaee.dev
amrkd.us
amgen.anuvabio.io
cao-tuinzaadbedrijven.appdashboard.nl
www.axelzavala.ca
aylawinters.com
app.bambacorp.com
benton.io
firebase.blinkogroup.com
blockies.dev
docs.api.pay.busha.co
www.cankerheart.dev
request.chot.jp
cnnimoveisapp.com.br
www.coder-bot.tech
www.cretworld.in
cucunguk.com
cyrilchong.com
dammy.co
www.deedpile.com
www.dennismacharia.com
designaky.com
devayansarkar.com
dheepics.com
magicwand.digitalmagics.com
diilihaukka.fi
dustin-frankel.com
endtoendinstitute.com
kiosk-apk.enkept.com
eskwela.app
euscail.com
cheer.eventos.tokyo
pe.f5wc.com
swaphub.fadisdh.com
link.feedyourelephant.com
app-val.floa.com
live.flowsportclub.com
foodiebot.recipes
app-dev.getpilot.ai
link.goodcrypto.app
rewards.greenknottz.com
howsmyflattening.ca
hurricanemap.org
igordantas.dev
suite-dev.imagin.studio
indestination.store
interocci.io
www.jefntungila.com
www.joeydambrosio.com
joinvolunteen.com
kidiparks.com
kittilaairport.fi
www.liftpulmonaryrehab.com
stars.lilas.solutions
dev.lo-beam.com
bigfootbinds.loadsure.net
www.maledettigiochi.it
www.mangabox.ink
matheuspimenta.com
www.matheuspimenta.com
matirosales.com
medicolle-stg.jp
seller.mframe.ca
www.midmoon.org
monoid.group
www.quran.muslimeenapps.com
mylandlordis.com
open-mynd.com
oxeolodesign.com
phoenixnsec.in
portboard.com
www.procliq.com
gl.bookings.qos.tech
www.quickmaths.online
data.rayoapp.com
document-review.redtube.com
www.revalier.at
rvtripapp.com
sanderskrug.de
help.screencastify.com
seatplanner.de
simplechat.fun
sitiowebonline.cl
www.solarpowertoken.com
www.studioestlumiere.com
www.subspot.dev
pp.tanara.tv
extranet.tankkauspartio.fi
tarantino.bar
techhimmel.de
negocios.trespagos.com
v-l.dev
www.voyayge.com
servicepartner.whitebeansoftware.com
www.wontgivup.com
dev.wopta.it
pvm-staging.zoiclabs.io
Other domains in certificate