Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=nurselink.shiftly.net.au
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 03, 2026
62 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2E:1D:63:92:E8:2B:B6:99:AB:CF:35:45:70:6D:52:FC:6A:6E:B0:28:63:7C:DE:89:95:52:42:4E:BA:FE:2D:09
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.beepr.de
a2bworldwide.com
pay.khemasiri.ac.th
actual-value.jp
www.aerofreedom.com
afrocoders.com
aidwiseacademy.com
akbarbarvalawala.com
amicsmusicameliana.com
andreayantonio-4everfest.es
cerebro.anglebrackets.app
qatotem.appshare.com.br
award-matcher.com
awardmatcher.com
www.aylawinters.com
baawebacalar.com
bjjscrubber.com
staging-admin.bkn301.sm
www.blitzshare.com
www.bluebird-documentation.com
br-portal.com
app.briskine.com
bscarbrough.com
report.carmate.bycopilot.com
apm.ccwc.io
valverdeglamping.clau.io
cloudinfra.co
www.ukrsystems.com.ua
link.deengineers.co.uk
estimate.definedcleaning.com
devduck.de
devhack.co
www.devxlabs.org
dogonahorse.com
dropzone.app
www.duinerus.co.za
edgarchilin.com
app.ehub.gg
enliiight.com
fastgoods.in
i.futurenow.app
gerson.cafe
gestioncitas.services
gmailcleaner.app
gmc-advisory.com
gouinguenet.com
web.hakili.app
admin.hseindia.in
dnselenophile.id.vn
tvhung1904.id.vn
jack-saunders.co.uk
jacobdtutor.com
www.jebavilascompany.in
signup.joineconomy.com
joker123angkor.com
m-aij.jombay.com
www.staging.k-9access.com
kingdombeauty.info
krown.cloud
alan.leung.work
admin.lvp.mx
portal.m-payaenergy.net
link.mamahealth.tw
exp.mark6.app
marsolier-electricite-fougeres.fr
mctamas.com
www.mileselectric.co.uk
mitanshu.cc
app.my-e-health.com
staging.my-e-health.com
nhadat61.com
www.nidsons.ca
www.olimcc.com
www.perrylauren.wedding
www.picha.co
quizpal.app
portal.quranbook.co.za
www.reppromotion.nl
nurselink.shiftly.net.au
slowrunners.gr
smartexapp.net
auth.software101.co.uk
auth.sortpro.ai
stickerlab.ai
strandoase-am-edersee.de
textable.app
www.twinleafproperties.com
www.unorater.com
varzimapps.com
vidipa.com
gym.viesoftware.com
app.dev.weartechclub.com
daycare.web-10.com
hairsalon.web-10.com
lawyers.web-10.com
tatto.web-10.com
bohr.woodviewacademy.com
cj.yantralive.com
app.zedbounty.com
www.ziweischolar.life
Other domains in certificate