Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.easybollette.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 21, 2026
Valid Until
April 21, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:6E:FE:84:2A:78:F6:F2:6A:94:5E:C7:41:A6:A4:99:AA:67:49:12:5F:F1:96:3B:0E:A4:C1:01:0D:56:F5:E3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.jack-apps.com
www.abakids.ca
www.adventurerentacars.com
www.ageorgin.com
ai3.studio
archies.site
www.archies.site
arnell.com
www.arnell.com
eventy.artlevinacademy.pl
atestai.eu
audioreign.com
portal.beckettacademia.com
beehive-tech.com
belisondernemingen.be
www.belisondernemingen.be
blackarrowssolutions.com
blingames.co
dev.beheer.bobdebot.nl
program.bodybooster.app
bookszen.com
www.bookszen.com
buildfolio.online
info.capitalmindsconsult.com
catelecombr.com.br
www.clariuscosg.com
links.clubvtc.com
childrenscareclinic.com.ph
freelancer.com.pk
webkutusu.com.tr
www.cultura-italia.it
cyberclaimguard.com
www.daltonvector.ai
dayoneapps.com
dessertissime.fr
auth.dinarplus.com
www.dittoenclase.ditto.kids
www.easybollette.com
eecon2026.eesoc.lk
elevatedpixels.app
www.eliteinteriorhub.com
heroquest.elnido.cat
emberone.com.br
www.galerimbenim.com
www.gattideltemposanto.be
www.hassan-youzghadli.com
www.ideagaps.com
aoms.ietapps.org
controlpanel.jdning.top
jensterle.aero
kalinisanexperts.com
larryboydpianoacademy.com
staging.leeeds.de
leoniq.nl
auth.marqueiapp.com
marshcraft.games
mayu-ginza.jp
www.medialukio.fi
mengelmoesamsterdam.nl
mitiosports.online
www.nextinsaga.com
withlovemona.ninecombinations.com
www.nish.global
vysledky.olympijskytym.cz
outswimmer.co.za
padelupadminstage.com
www.paintedgoddesstattoosllc.com
www.parkit2.at
www.uat.personalni-standard.cz
playlistsforyou.com
geekbar.pp.ua
staging.prosegurpay.app
qerry.online
www.quicklyupdate.com
divqomedia.qzz.io
cmmc.silentsector.com
travel.smartpick.tech
hi.snowledge.eu
excellentiasafety.sonarcompliance.com
spazawise.com
t-e-logistics.com
kruger-golf.technaur.co.za
www.tekotattoo.com
tenistac.site
froen.timp.io
heat-fitness.timp.io
padhealth.timp.io
trace4eo.com
tuportal24.com
u2maru.com
games.ui-talentlab.com
vprok.by
whataretheylookingfor.com
www.wink.financial
word-court.com
buddy.work.life
www.yesilinovasyon.com
yesilinovasyon.com
zmed.site
zmed.study
Other domains in certificate