Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.mevedir.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:BC:FB:CC:4E:D6:1A:C0:63:73:6D:27:5C:D7:FC:39:FB:C1:37:35:04:1A:E1:87:EE:1C:CC:42:5D:55:DD:7A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www-angular.tutramiteya.com
fb.91xinshang.com
rag.aiasolutions.ae
api.one-tap-access.alledotech.in
anionsoft.com
anyoone.com
aptera-promo-code.com
admin.as3a.com
maylis.austomos.fr
www.big-nest.com
consultant.boussole.io
reservasbubaqia2.bracelit.es
content.dev.brd.so
room.charitashospital.com
www.alpateknik.com.tr
test.crypitor.com
app.cxperium.dev
dashboard-wouf.fr
connect-5.dev-ltl-xpo.com
www.directedworks.com
www.dreamware.games
www.account.easytap.co
edharena.com
sws.uem.edu.in
www.efterskatt.eu
www.ejohealth.com
www.exportselect.es
static.firesidechat.com
gametoolkit.io
gitadviser.com
gohingconstructions.com
blockhistory-vineyard.grapeweb.com.au
louna.graphite.space
gurubasava.net
docs.morel.hcn.ac
get.staging.hoamapp.com
treevisualiser.idavid.hu
itamarassumpcao.com.br
ryo-fukui.itmr.dev
www.kick2buildghana.org
app.krymaps.ch
mileage.lalabird.com
playwright.lastolive.games
www.maihang.in
www.manoirasdetrefle.com
www.marcopoloclub.net
www.memoryfuturelb.org
www.usk.menuqrate.com
meucomex.com.br
www.mevedir.com
fresco.mikelkamel.com
revenue.moola.network
www.moolbono.com
myanmar2d3d.website
compiler.newtum.com
link-azama.nibo.com.br
smart.novatrafo.com.br
navi.ondai.net
orderofthings.dk
ins.orwig.app
otakujsdev.moe
business.pepami.com
www.plotsklapps.dev
patient.previsitprep.com
privori.com
productdemo.tech
psims.games
www.ratemykhateeb.com
cdn.renanteixeira.com.br
share.rentbook.com
reverseyoutubeplaylist.com
rockstar.bingo
www.rtctechnologieslimited.com
www.samschwager.com
api-docs.seeds.finance
auth.seemeapps.com
soonsabai.shaine.dev
link.shinnova.io
6uvdoxw3z2pwsllqxxyl.smartimob.io
www.snackchat.app
softhimalaya.com
web.somenu.digital
app.specchem.com
tempest.studentphotographer.co.uk
web.taqtaq.com.br
tasknode.cz
www.teract.si
thesirtuinproject.com
tour-pins.com
vmp-demo-api.travizory.ch
www.trivisiontv.com
tuhme.com
twinsbrotherstravel.com
uplaces.site
drz.vanz.dev
vaztiancode.com
vertexdentalstudiocases.com
visinetechnologies.com
www.vortxtoken.com
wikxhibit.org
Other domains in certificate