Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.medicalmindmap.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E3:C8:46:69:A1:43:94:BE:9B:51:FA:C3:11:DE:F0:C3:A5:89:4A:DC:A0:8A:71:A2:2E:33:FC:BE:4A:69:D0:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
juang.site
www.juang.site
3hlearning.com
42133724.xyz
albkredit.al
www.analyticsos.com
www.aot.lk
auntiehotmess.com
help.avada.app
beerandbikes.co
demo-panoramashop.bestat-data.com
booking.demo.am.bient.io
billmader.com
console.blotch.app
data.at.calculatorhub.app
www.catherinerouart.fr
www.cellectivity.com
guide.codmon.com
cottagesvi.com
covertalert.com
www.cuttherapy.com
d13y.co
link.dea-service.com
www.dinosaurdino.com
www.doyouliveinademocracy.com
elenarosenberg.com
link.eucare.tw
evergreenchristiancenter.com
annonces-automobile-dev.flitter.fr
safevault.ftapps.com
calendly.gatheround.com
goguau.co
uat-cancellation-origin.gohenry.com
cerrocred.gueno.com.ar
www.gypsieshabitat.com
hadrienbourgogne.fr
haurakiroofpainting.co.nz
dev.haynet.co
hunni.co.uk
demo.impulseworkplace.com
inigodelportillo.com
www.k7.cl
kaneleuc.com
app2.kansasgolfscores.com
kaushike.info
knkmobiles.com
www.latabisca.it
alpha.likewatt.com
lnttrainingandtechnology.com
lunemgmt.com
luxlottery.vip
maestrodeinversiones.com
manognya.com
meblomar.com
www.medicalmindmap.org
mosskie.com
www.justmovein.moveinout.co.uk
mshguru.com
www.mydividendmeter.com
app.myhelm.io
neophileinc.com
neu-digital.com
niklausromero.com
hopdev.ofish.numer8.in
oliverbott.com
onemagicschool.com
www.pasticceriamela.it
commande.lemoderne-cafe.paymytable.com
www.sumoprincesa.pedidomovil.es
pelaezabogadosyasociados.com
www.perrylogan.ca
jalgaon.pharsight.xyz
powermega.planetbinc.com
play2x.city
playnet.lol
minesweeper.popoko.live
www.pornotvyhodedy.cz
psbtb.com
miseensaine.order.pulp.eu
www.puzhen.co.nz
discover.proedge.pwc.com
www.qavels.com
www.raven.quest
ryanhubbuck.com
app.safekidtech.com
schneller-besteller.de
scoreplank.com
www.sehet.pk
click-dummy.sporty.club
mobile-dev.stoick.fr
studioszyszka.com
dev.admin.thehopesurvey.com
thesuperglue.co.uk
tylercartwright.com
vellone.dev
voh.ro
app.vomtuerken.de
websitedownloader.dev
wientjes.io
xchbalance.com
Other domains in certificate