Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sinsenstudio.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:85:9F:63:FD:B3:38:F2:F2:13:E5:FD:BD:E3:25:9C:BB:93:DA:B8:0A:DC:B7:B7:CD:C3:93:FE:E5:D6:A3:19
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.apollustech.com
www.1kmwine.io
www.adamleemitchell.com
ahmedraja.co.za
amaren.ventures
jotdown.andeight.com
auth.annotated.io
opendelivery.appjusto.com.br
www.astrid.fm
dynamiclink.avyatated.com
biodataku.biz.id
bmyvalentine.net
www.boraticket.com.br
carlandersson.net
www.centrorivadavia.com.ar
clave-llc.com
cliffhanger.top
climatemap.info
www.hongsin22.co.kr
transmitter.com.tw
www.covidiarymath.com
dillensamfallighet.se
donarlo.org
admin.drswethaskin.com
app.dupplo.mx
qr.nava.eco.br
www.emueaglescamps.com
escrivaninha.pt
www.eti-institut.de
admin.etiquette-art.com
nft.faridahookahs.com
www.finnaktivitet.no
www.gasmexapp.com.mx
connect-a.goegonetwork.com
www.grupocomunicatea.com
guide2copenhagen.com
api-fun.h4b.dev
harrisburggreenways.org
www.hauzweb.com
illuminacioginestera.com
share.itsbonustime.com
nerdspace.jeanhumblot.dev
link.joinmyride.info
kajnar.cz
auth.kakadoo.cz
questions.pkg.knekt.io
www.rutls.leader-id.ru
freightwaves.lean-tech.io
ln.linked.careers
app.livecastmedia.com
www.lucky-skin.com
beta.melabel.io
staging.qersch.merchantportal.us
www.mesrendements.fr
abdurrachman.my.id
bananapixel.my.id
winayaenglish.my.id
hr.myelinh.com
www.nansystem.com
neil.io
www.newwavesensation.com
talent1.nitramit.dev
saga.stage.osaro.io
patialahouseentertainment.com
fb.pitchdeck.io
www.plenapsi.com.br
cargomatrix-dev.prodeo-live.com
productbased.site
kerjuliettenantesgare.order.pulp.eu
e31.r-nold.eu
www.residencekrengolama.com
retao.io
www.ridpo.com
robonoid.jp
serflexcorp.com
www.sharify.tv
mint.shibacollection.com
sinsenstudio.com
gg.sisamos.net
one.sky-boy.com
functions.smallwire.com
smartlfl.com
covid19.speetar.com
wervingsapp.stichtingvanhetkind.nl
supplychaincommerce.co.uk
bridalbeauty.swanmoments.lat
www.synapraxis.com
techdigitalcard.com
theariesa.in
app.theellisapp.com
www.thejusujith.com
tracit.com.au
mint.turfnft.com
www.unserhaus.com.br
smhccmiceb2b.vx-events.com
blog.wataash.com
next.witful.com
www.workspots.io
circulating-supply.xy.finance
zinglio.com
Other domains in certificate