Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=statistics.docmasweetspot.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:E2:0E:19:6A:7B:09:73:33:93:09:35:84:C0:CD:A4:A7:E9:A9:51:DD:5D:71:FF:F7:6E:6D:C8:6C:46:74:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
writergadget.net
platform.100blackdevs.com
2002.bloggies.com
app.acuba.com
albashatechnic.com
alolaproperties.com
www.amigosecretoonline.com.br
aoak.co
www.apidash.dev
request.appji.org
gst.azbpartners.com
basenug.com
www.benpainter.com
blockcertify.birangal.com
bizappinc.click
bluehouselogistics.com
www.boots.nl
www.bowhead-games.com
braggclassactionsettlement.com
btischeduling.com
www.budapestbusinessapartments.com
builda.homes
www.burtonsacademy.com
cameronembree.com
caucustutorat.com
cesarinacornielle.com
www.cfb-weekly.com
cgerencia.com
chalipasoftware.com
cnypassport.com
connexe.co.in
uat.moneysign.1finance.co.in
deeplink.coindhan.com
cotaeru.com
criteriumasesorias.com
go2.cuyna.io
dcmarketagents.com
cdn.demirdelen.net
dfw3dprinting.com
www.docemasunorestaurante.com
statistics.docmasweetspot.ca
draftingcanvas.com
www.dropsher.net
drsarulrhaj.com
ellareporting.com
connect.evenito.com
expedibike.com
platform-tools.facet-accountants.nl
gestionintegral360.mx
www.gestionintegral360.mx
glofox-onboarding.com
www.green-owl-compliance.com
hadfamily.com
hallcontrol.mx
kural.inayathalam.in
jadesignature5105.miami
v3.jamesabaja.com
jayslaffat.art
jmdunning.com
kindeep.ca
kubeflow.party
lescarnetsdadriano.com
a.livingskiescannabis.ca
lototurkiye.org
www.lukeandlizzy2023.ca
expand.mental.events
mesbro-activity.mesbro.in
www.metrean.com
support.momar.me
netflix.soy
www.nokwandam.co.za
accv-asist.rademacher.cl
replinq.com
rgleave.dev
corp.rili.tokyo
docs.riskey.io
www.rrmpizza.com
www.saidthat.xyz
www.sayatme.guide
clients.screen6.io
seasonaljobs.uk
test1.skyvldg.uk
smartwebsolutions.cloud
snapmentor-dev.snapmentor.no
www.shop.sphoorti.in
mulin.stylishop.store
tracpic-qa.stylishop.store
www.sytacle.com
www.tinygrove.co.uk
churrascoemenu.triggersplus.com
tro-crafts.com
trumpsafraud.com
app.utilo.co
www.vergerjoannette.ca
www.vrmeditor.tools
admin-staging.work.life
wowinnovations.com.mx
www.xbrestaurante.com
yaatly.com
yakilla.au
Other domains in certificate