Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.22strategiesllc.us
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 21, 2025
Valid Until
January 19, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:FA:5C:E6:F9:6C:91:7D:F7:9D:96:BD:52:EA:A9:2A:BA:76:2F:93:C1:B8:6B:84:59:85:98:73:1C:D1:1A:A8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.fixter.org
ru.1v1.lol
www.22strategiesllc.us
vanilla.5p2p.it
sistema.acertapromotora.com.br
www.allezmontreal.ca
join.andrej-homann.de
app.angular.fun
demo2.anyware.software
www.arabicornot.com
astograph.com
www.bitronicsadapters.com
authtemplate.bluebelt.com
www.bouquet-viewer.com
philipi.bovo.me
cakeitawaymerrylands.com
cardcoll.eu
insightek.careergpt.in
insightekgc.careergpt.in
www.caribematch.com
qr.cartag.in
certificadodereciclagem.com.br
www.hase.co.in
ui.sociallife.codedivision.com
www.mikemike.com.sv
app.coupleup.com
www.currykababindianbistro.com
qa.hub.eleanorhealth.com
ertyu-i.com
farzadcheshk.com
www.fitself.me
flmarketplace.org
m.fondinsan.ru
app.frosty.rocks
streamlab.gakuseiguild.co.jp
instrumentarijum.galis.rs
www.gmaf.com.mx
admin.gofoods.pk
groenli.ch
www.gwelanfenten.co.uk
helloh.jp
www.holusion.com
interaktiven-angliyski.bg
www.jiltons.co.za
juniortavarezphotos.online
justdebateclub.org
justinmolzen.de
jymusicministry.in
www.keioboys.com
kennygt51.dev
leinen.dev
design-dev.licon.no
www.mejosko.es
miekii.apps.metaa.dev
michalmlejnek.com
www.mydharaa.com
admin.mypaidbills.com
www.naturalspamadurai.in
www.nirmaladevidiagnostics.com
www.nossodivorcio.com.br
lmukyzhj.osoul.pl
app.pianowithjojo.com
app.pinkbird.co
www.play-sheeple.com
poetive.com
pblpdpui.pp.ua
www.printboda.com
www.pullgain.com
www.quantum-group.jp
rachit.online
salem.rainbowsdroptaxi.com
receivcontrol.com.br
www.recipe-data.com
www.rxremedies.in
app.savart.com
www.securemyphotos.com
shakthiinfotech.in
sheeptrack.net
www.signalswings.com
www.slayrated.com
smartaround.it
solarinsight.co.za
a.eventos.sonae.pt
portal.sonoapp.page
stacktrack.co.za
stefanrotaru.eu
dev.sweetweeby.com
www.talentpulseai.com
online.talevation.com
www.thediamondcleaning.com
bombayspirits.thediners.in
expert-preprod.tiime.app
turtopardavimas.lt
www.velosmenu.com
links.veryalien.com
tripsaverz.visa2fly.com
trx.vu2ehj.com
webdesign4ever.com
app.prod.whatson-pay.com
app-stage.youareaceo.com
Other domains in certificate