Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=events.stmaryswarwick.org.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:54:8E:58:70:04:E4:58:C8:74:AE:4A:50:23:F7:03:C0:F8:B4:AB:CD:AB:CB:98:C8:D6:72:1D:25:11:57:1A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
word-log-dictionary.yamaterous.net
moss.acuizen.com
www.ainteliza.com
www.andrewrgray.dev
anttk.tk
americajoias.appshare.com.br
amitie.appshare.com.br
www.aqhg.online
app.artoftheheartmusic.org
www.assistfolk.com
offer.babydaybook.app
price.beone.ai
www.burse2u.com
carpinterialagubia.es
catherineng.com
www.cdparquets.es
dev.chartlog.com
fb-apps.cheapoair.com
control-dev.cmorider.com
www.gudbud.co.in
codlyapp.com
contadigitaldotz.com.br
lnk.criptonita.info
manage.demandeals.com
desktop.vision
passengers-counter.dev-sunil.com
barbaresco.for.dinii.jp
dinneratians.com
dogotea.com
dosetalent.com
drafttrainer.com
jumpstartapp.energy4u.org
appeconomia.eventoselpais.com.mx
excyn.com
fairlineup.com
ffcscombogen.in
fhomex.com.mx
www.firstmake.jp
www.fondaermisendo.com
www.foxcoliving.be
applogin.francomanca.co.uk
l.getsyp.com
todolist-qa-test.going2.com.br
www.gophers.be
www.gracklecanvas.com
www.grammacards.com
guadarramaclubvoleibol.com
happystagger.com
firebase.hdw-prod.gcp.homedepot.com
www.hselaudos.com.br
dev.store.ihunterapp.com
www.ipssi.com
kishanjoshi.dev
promotions.klaxongroup.com
individual-online.lectorio.cz
glassboard.letsventure.com
ek.lms-it.be
warranty.lufi.sg
lunchbug.com
marz.pro
www.mehdie.org
www.michrankicool.com
mmorpg.zone
popup.mobilitymojo.com
chat.morein4.com
undangnikah.my.id
legal.mymoons.cl
eeg-visualizer.neurogram.ai
m.nuz.to
landing-test.onetaphello.com
admin.pamelesxi.gr
pinaprops.com
loren.propertyservicesexchange.com
www.qad.com.br
dataclaro.rayoapp.com
www.romshuffler.com
dynamiclinks.roymorgan.com
rudydogum.com
www.sa33.com.br
link-flash.safeguardapp.nl
tasks.sajidahamed.com
camilo.santiagojimenez.dev
quest.scodegame.com
testing.sechsnimmt.de
secplus.com
shiho-suenaga.com
shoofti.com
www.simonlevett.com
qr.smplabs.com
soniafallahi.com
events.stmaryswarwick.org.uk
bestellen.strandcafemargaretensee.de
text-ux.com
thingify.com
app-acompanhantes.trusom.com
www.uikore.com
www.videomodify.com
dl.vitrinesbt.com.br
withyourspirit.org
carpool.yedem.io
Other domains in certificate