SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=johnathanwood.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 20, 2025
Valid Until
July 20, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:59:6C:E8:C2:91:5E:98:DA:3F:1C:50:73:30:24:B2:D8:C1:E2:06:01:40:FE:44:EA:1C:21:21:1C:F0:1F:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.cashdab.org
1198.pontuax.com.br
prod.monitor.api.coverage.28east.co.za
5am.app
a1taxigo.com
portal.agri40.ma
flynn-labelers.aimmo.ai
url.aimservices.tech
deeplinkdev.spica.altr.jp
www.analyzee.io
www.apricot-model.xyz
arvada.io
asiapacificinternationalschool.in
exampletwitch.atlantisthief.de
bamboogaming.net
app.bikecheck-pro.de
play-dev.burningsea.com
varanexus.cancanyou.com
cannabismd.nyc
beta.city-ol-brugg.com
cleverhub.lk
www.adislibero.co.in
alpha-theventi.apps.flyground.co.kr
intrium.co.kr
cresus-lorraine.fr
id.dazzid.mx
www.dyslexiatutoringnz.com
ramanathapuram.eacabs.com
www.eatch.me
webeditor.educobot.com
tpenso.egg.srl
preprod.worklog.elog.ph
www.erkiklim.com
www.excelorindia.com
admin.experiencebobcat.com
floresrobles.mx
documentation.floriangrasser.fr
franzz.app
dev.freedomfinancialnet.com
iwd.gdgahmedabad.com
myprojects.geoapify.com
www.globalsportsgroup.de
gulmargskiclub.in
manager.hanaspeak.com
www.herosdogs.be
hikeai.org
www.hikeai.org
stack24.informacast.app
data.accounts.juststudio.is-a.dev
lab.jaouan.dev
www.japanerleben.de
johnathanwood.dev
aproxy.kmcnellis.com
www.louisvn.com
promo.makamaka.by
makepainaway.com
www.makepainaway.com
marknicoll.co.uk
mi11er.net
cdciledere.montri.fr
links.news.mooney.agency
moshiberica.es
neelshah.tech
link-pwr.nibo.com.br
numeras.io
ohparking.com
auth.dev.on.life
fmlasallista.org.do
outch.work
parludium.games
miles.pete.run
whatsapp.postcron.com
urth-caffe.qlub.io
test4.res-cue.com
revive-web.site
bestellen.romantica-waltrop.de
afa.rxcx.au
bts.sagiper.com
salesgear.jp
app.emr.shipzzer.com
stjudefoodproducts.com
tasivetech.com
www.tastingplanner.com
admin-staging.telosconecta.com
scheduler.thegotiger.com
hillsgsf.thepetdoor.asia
tlnt.kz
auth.toss-online.com
trainchess.ru
www.transiport.com
www.truckhh.com
www.veterinaria-jalisco.com
wavebasketball.net
lq.webgurus.eu
weitschuss.com
app.whoma.co.uk
woelk.io
web-staging.wrktalk.io
beta.wumbox.com
admin.zsebtanar.hu
Other domains in certificate