Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=smvp.ama-shock.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:9C:27:1B:CD:90:BB:0B:3A:9F:9C:4A:D0:41:50:D8:73:0C:BA:4B:48:CD:2F:09:8E:74:B0:75:0C:70:0A:CD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.casval.trade
dev.lsportal.3rbehavioralsolutions.com
www.4d-media.ca
absenso.com
skinseedforminecraft.africasunrise.com
transportescens.almeraim.com
smvp.ama-shock.net
artecstudio.us
dashboard.automatedremarketing.com
axentric.ai
www.bouvardia.salon
bravosix.io
carbcountinglife.com
cbdfruchtgummi.com
beta.cccombo.com
ceramicolor.com.ar
www.clarity.audio
www.cm-3.jp
pssp.co.kr
stg.codework-tech.com
services-dev.coinomi.net
cola.bio
cadence.countersunkapps.com
dailysofttech.com
www.danielhess.dev
www.devtool.cl
app.dmeconnected.net
dmitryourkevich.space
dreamdtourism.com
drewgal.com
www.dwellabs.com
edwardmcconnell.com
eirikodal.com
www.emix.in
businessriver.engineeringawards.ie
evialinaphotography.com
falcatawood.ae
cura.followup360.com
app.fudurama.com
fuzzy-creations.co.uk
beta.getitout.io
app.gleac.com
gorillasports.ua
gspco.net
link.gvine.app
www.hennamiranda.com
app.heylo.us
hlphotonics.com
hummingbirdja.com
myizin.idenfit.com
internhs.com
minsait.hml.portalcliente.izii.io
jardimsaocaetano.com
www.jonathan-wilkinson.com
loiterer.keigo.io
sampler.kirinsan.org
konnectamerica.com
link.lesgow.com
auth.limber.work
www.lintapipes.com
livebetting.party
bin-concept-fe.logexa.com
longlivethetruth.org
www.macaobackgammon.com
majales.tv
demo.manyba.com
mariocazaux.com
mayatechnology.co.uk
mayertekyasociados.com
www.meanchefstudio.com
millennialcredit.com
evaluate.failte-ireland.mobilitymojo.com
myhappypets.co.uk
newrangoontravels.com
prueba.admin.citas.gsi.org.ve
fund.parthraghav.com
pp-app.pasarpolis.com
www.prestigeplus.pcalc.net
pickuplines-for-all.com
www.piergiovannisedia.com
l.playwicketcricket.com
pmanagement.cl
mta-sts.pomocorp.com
www.posadadeltrebol.com.ar
www.premion-tools.com
punjab-zameen.pk
hangeul.purplit.com
volt.rayoapp.com
www.recoverwith.us
www.renewable-energi.com
rossruidiaz.com
www.statcheck.samsite.io
splendo-eu.portal.splendo.health
steinmetz-reuter.de
symmetry.la
www.tampacip.app
tardigradum.xyz
thansys.com
dlink.thelocalstreet.com
networkblocker.ubi.jp
Other domains in certificate