Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=intervention.actiglass.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 19, 2025
Valid Until
December 18, 2025
33 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
50:41:8C:69:D3:44:AE:13:DA:2F:2D:5C:53:2E:2C:DE:FD:D2:EA:F8:CC:53:F4:AC:D8:D2:5E:1F:C7:75:05:E4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.bellatrixum.com
1.whyq.com.au
ackson.com.br
intervention.actiglass.fr
chat.agentsavvy.com.au
aleksanderkomarov.com
amaravathisquareyards.com
demo.anevent.co.za
arkoreltd.com
shotgun.arl.sh
associatedlabelprinting.com
aukcijealdahra.rs
www.betlyzer.com
appdownload.betwayafrica.com
player.beverlykaraoke.com
admin-sf.nightly.c-plus.chat
audience-sf.nightly.c-plus.chat
camdencountryclub.com
www.caruma.io
cfpmasvida.com.ar
corrijae.com.br
whatnot.customtrading.cards
satan.deeperth.ink
www.delix.io
sql-fundamentals.dev-master.ninja
devicefield.com
din-mel.ru
dinles.com
www.einfach-anstellen.de
emporiopalletpizzaria.com.br
admin.esfihajuventus.com.br
www.essenzialeconsultoria.com.br
everyloop.in
ezautobills.com
familykrlcbc.com
fincal.in
flutter.lk
app.staging.formentor.io
gnilron.com
www.helisson.com.br
hetrend.hu
go.hlvtrinh.com
pmnext.homestation.jp
tainefng.id.vn
onesec.ingresso.center
water.ini.farm
finance-calc.jasir.dev
creator.jaybox.com
jaylmapersonal.com.br
service.jjtw.pro
gworkspacetest.jschule.de
kindle-highlights-export.live
delidelapp.knowband.com
groconference.letsgro.co
majlishomefurnishing.in
www.majlishomefurnishing.in
www.matesenlinea.com
medicinedatabase.xyz
images.mesbro.in
stag.accounts.mirageid.com
trappedjpegs.monolith.gallery
productreviews.informacion.my.id
chiral.neubri.site
pedrescuers.com
telr.pekoapp.com
link.play.pl
promptblox.com
purefoods.cloud
www.queued.no
reasoninrevolt.net
satyambits.in
security-center.net
free.smartins.fr
sohyunko.com
speakingathome.be
spectors.in
www.spellmemorizer.com
gestao.stechsolucoes.com
barrascromadas.sulcromo.com.br
appstage.swell.life
switchconcept.fi
www.tableaukitchenandbar.com
tailwindkompass.com
testjob.in
boost.thndr.io
www.timelosophy.com
tkmenginyeria.com
driver.trucube.ai
app.truenorthdrives.com
stg.www.truepay.com.br
tsurunomundo.com.br
stage.auth.thrive.uk.com
app.vegan-cheffrey.com
e.verevio.org
vibevault1.store
vinsoft.in
webvrpro.virtualvisit.in
uatadmin.vnmrental.com
uattenant.vnmrental.com
yumy.farm
Other domains in certificate