Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ootmasterseries.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E1:64:C4:2D:66:A7:BB:67:28:3B:05:66:4C:85:4D:07:5A:89:2B:66:02:48:02:BD:83:B1:64:99:A5:D5:8A:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.ezw8.com
braga.academytrial.com
data.atil.io
www.benaton.net
app.beregnungsplanung.de
bi2go.biz
www.botls.app
presupuestos.bus.so
miao-walk-test.changwenhan.com
preprod.chaperonsetvous.com
chrismay.me
pmapa.cires-ac.mx
application.gboutique.co.il
nst-app.nst.com.my
bistdinesh.com.np
vpl-alpha.datavis.sg
www.denysschen.com
www.dnalauncher.app
www.dominicfichera.com.au
www.clientes.dropdesk.com.br
interconsulta.drtis.com.br
medvatic.dwebbox.com
saleskit.e-incube.com
app.easybranding.io
get.easysculpt.app
advocate.eqwity.com
retailer.eqwity.com
www.exitround.com
www.fastfoodfriday.com
www.ff7.run
www.figmentresearch.com
flashcheck.org
apps.folkov.com
www.gfsectionalbuildings.co.uk
www.gyronetics.com
app.hirameku.com
bopis-v2.hotwax.io
howya-app.com
www.iconiqsports.com
staging.inkpaper.ai
intelly.solutions
itte.dev
jankoch99.ch
www.joncel.com
www.julialopes.com.br
jyothish-ram.me
old.konstantinedatunishvili.com
zero-ui.dev.kubershmuber.com
www.lazymonal.com
go.lemberglaw-alert.com
www.lingotable.com
www.livbraiker.com
www.lucabrembilla.dev
lucaspinazza.com
mabeljewelry.in
maquinaria-tuto.com
margitberanova.cz
marinegpt.marineinsight.com
medme.co.za
console-hospitalityhouse.medpharmservices.com
www.meinevitabilanz.de
www.mgb-digital.com
moohae.net
murrayspellingbee.com
www.nftking.jp
www.one-step.io
ootmasterseries.com
paarberatung-waiblingen.de
www.paradisemarinaplace.com
patashala360.com
www.pcmcrunners.in
www.perrinn.com
pettanko.world
auth.cloud2.photorobot.com
www.pinaashartjewellery.com
profx.app
www.prontovalet.pro
www.saianandfarms.in
usat.collaboration.sasaki.com
enterprise.dev.sharo.io
auth.sirennotify.com
admin.sliceq.com
www.socialloop.io
www.southpole-shop.com
splitbar.de
sportscaster.io
www.sudburypetition.co.uk
takerhat.com
www.thinbase.com
tom-annette-wedding-2019.co.uk
www.trim.social
spartan.turnosweb.app
uueauclaire.com
lab2.ic.vezham.com
schoonmaak.wassteel.app
www.williamperacchio.com
wineparty.app
project-dev.woodmarkcabinetry.com
www.workplanner.app
emoteresizer.yoshisaura.com
Other domains in certificate