Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=booksmartflea.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 30, 2025
Valid Until
February 28, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C9:06:EA:44:5E:8B:7C:A9:97:F1:DE:C1:80:AD:B4:0F:06:90:4C:BD:8E:84:D4:59:4E:B4:9B:F8:27:D4:C7:B7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.entregaali.com.br
re.10point.ai
rodrigueslaw.adv.br
agileccpm.com
agiles.site
ajedrezaspiracional.com
www.allstarcleaning.com.au
ampreschool.net
amysbeautyspa.com
casadasracoes.appshare.com.br
arteroweb.fr
ashrafthamir.com
links.aspiriakc.com
attenai.com
autoformsai.com
advent-sawston-test.autolomate.com
blog.b4you.net
www.bequali.com.br
link-service.bi.group
pairanoia.bmgomg.com
triangula.bmgomg.com
bookloop.co
booksmartflea.net
idbt.bosscool.be
www.bwbresidential.com
ai.bymile.site
www.campusmate.in
www.chaskaforyou.com
chitchatsource.com
new.clipet.io
cndsoftware.com
projdemo.co.in
mmp.codmunity.gg
ecotaxicc.als.com.uy
auth.crio.do
app.dashur-fitness.com.ar
datacatalysis.com
dokidoki.cafe
teachme.dulemba.me
www.edition-nef.com
t.egg.srl
staging2.app.elle.health
forms.oe-stage.emporix.io
www.plant.fpdrozd.com
wallets.fpx.my
www.frontiersoftwareservices.com
grigoren.com
clinics.hippocrades.com
hotelsairegency.in
www.sedk1.ihhsfair.com
imbianchinocesena.it
inmobiliariaintegral.com
admin.jointogether.co.uk
www.news.jungletak.com
firebase.kaidanuniverse.com
kombu.kanejaku.org
kasirku.id
vfood.kasoft.vn
lokomproaqui.com
links.maket.co.za
massiv.cc
deepfinder.moatindia.com
muzsoncathouse.com
mydc.life
app.nannyme.love
www.neonbloom.fr
kidsplay.onmobilespace.com
ozzi.tech
palety-krecik.pl
pathwaycolleagues.info
game.pawpawportal.com
banking.payacross.in
www.pentutoring.co.za
picacoin.org
wrap.prl.one
link.dev.prox.chat
apps.quotemelimo.com
www.rebeldesigns.net
rewyre.app
dashboard.safeshepherd.com
bills.sanhei.ch
saylorcreative.com
scolls.eu
securitymaze.io
shivsys.com
deeplink.shoptogoapp.com
sigecahome.com
firebase.siwalusoftware.com
www.smartarts.co.uk
smtgeneralcontractors.com
www.sqr.ink
www.srisainarayanahospital.in
dev-main-site.strainbra.in
th3rdplace.com
vendo-money.touchtech.com
staging.admin.vclass.ac
hola.vecinos360.com
www.venetrans.cl
www.weasyplus.com.br
welpyshop.com
Other domains in certificate