Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=anonymouslyfeedback.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:36:C8:A9:35:C3:4D:0D:84:3F:43:19:C9:DE:26:08:E8:DA:39:E3:1D:39:3F:F0:FA:14:6A:8D:55:1C:9A:45
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.haha-not-so-much.com
alingu.com
andreatondelli.it
anonymouslyfeedback.com
fyl.app.br
www.arcotecharchitects.com
www.axess.clinic
bellamkonda.me
gmailhelper.bellamkonda.me
onlinediff.bellamkonda.me
screenrecorder.bellamkonda.me
www.bellamkonda.me
shiftmanager.bunkasai.info
calismatik.app
www.callpadsystems.com
kulturedkombucha.qa.castiron.me
cdmvision.dev
links-fb.centralo.com.ar
www.cleanwell.co.nz
dashboard.pdmuliasari.co.id
www.smartinno.co.tz
tintlab.com.ng
paraschataut.com.np
courtoftheknee.com
cristianarroyo.dev
applink.dainiktribuneonline.com
daniamakeup.online
deeplink.delycate.com
cema.docugen.com
easydoublepaisa.online
www.enumacr.com
fafnir.dev
fjuul.com
mcp.freshfilter.com
www.frinksmovement.com
www.garzone.store
gesundheitszentrum-hollabrunn.at
gh-stg-pay.gohealth.tech
gordanita.com
romantic.heartbeat.com.mx
heirloomharverstcmr.com
higherstandardsautorepair.com
hobe-kibondo.org
iquizpro.com
izibola.app
app.jettsender.com
www.jonathankoch.net
www.kjvelarde.com
event-registration.le-vel.com
www.leasubrenat.com
letsgetwellacupuncture.com
restaurant-management.lifewcode.com
www.littleangel.nu
luminarlab.com
m18.tech
macaco.cloud
mariiasmyk.com
minicadia.com
mohitparora.com
www.montoriosrl.it
mxa10x.com
mzeeky.com
www.neilarora.in
newtonxr.com
staging.app.omyfu.com
onepotpony.com
orsoverde.com
osnod.com
pagepals.de
links.platenger.com
plusrep.pro
admin.pontofacemark.com.br
app.pontofacemark.com.br
www.poupemie.com
premierfc.com.br
punchabrandon.com
manage2.rentadvisor.com
hakobune.retro-ink.com
cloud-tools.roperetail.com
rsapps.org
connect-ng-carrier-bids.rxoconnectuat.rxo.com
www.schenonerestauri.com
www.skycoderz.com
skymeyer.be
smarthomecompared.com
snapshottechnologies.net
i.sonnet.fm
space168pokdeng.live
srianjaneyamayurveda.in
srpancho.com.ar
vscht.stelifera.cz
taloscore.com
teamos.co
rates.van-rijswijk.net
demo2.app2.wakuas.com
walllly.com
werkbyte.com
fieo.prototype.wigohtech.com
yutakaintertrade.com
pay.zaparkuj.pl
Other domains in certificate