Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pod-stats.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 02, 2025
Valid Until
December 31, 2025
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
82:38:F0:24:8F:7D:72:08:29:A5:C2:10:DB:E9:B0:30:C6:38:D2:5E:24:A9:73:06:CD:91:1C:9D:EB:61:50:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.maid.cafe
spge.0net.red
auth.aida.finance
staging.auth.aida.finance
app.alberts.be
manager.allofans.io
miguelgg.allparuna.dev
adminketket.andando.sn
www.auraexpert.com.br
hogdekempen.bc-app.nl
func.benes.se
firebase.betterism.co
demo.giggle.bizoo.cloud
bstsecurity.ca
www.calcularcombustivelonline.com.br
cheapnpick.com
www.cliniquelouispasteur.com
aksel.co.id
apixindustries.co.in
www.apixindustries.co.in
www.successmanpowersolution.co.in
pcgeek.com.bd
andy.com.uy
www.corthy.com.br
www.cosmicalcalculator.com
make.creatifydesign.in
entry.cu-ra.net
dev-reclutamiento.cydocs.cl
datacat.net.au
datagorillas.fr
devplayground.in
divai.click
www.dugnad.org
ecospy.sbs
beta.eslujo.online
spijker.flockim.com
freeresumebuilder.live
hub-staging.givve.com
whale.gr-id.me
greenbridge.co
groupegedaf.ma
heavenofmt.com
sparnord-dst2.heavyy.io
hohohoia.store
huelamo.info
hunabstudio.com
goidauduongsinh-mocnhien.id.vn
ntube.rabi.info.np
www.inhala.top
islautopia.com
admin.jahandco.tech
auth.staging.joymo.no
v.kemiline.com
khonager.de
www.khonager.de
link.kiesjefolders.nl
cdn.klodskammeret.dk
www.kroot.dev
lengua8.com
ewander.mouad.co
get.muslimaat.uz
ryansyach.my.id
online-kuji.nagano-market.jp
nannertech.com
www.nannertech.com
mta-sts.niicp.ca
noasecsolutions.com
oldsite.1519.fun
www.orderofthings.dk
pawtner-app.com
admin.run.phuket.run
pod-stats.com
laboklin.dev.prodevteam.eu
birthday.proptit.com
app.prospectis.immo
dev.quik.jp
unclematt.rasnake.info
my.runmyservice.com
hipotecario-seguros-homo.reportes.salas.com.ar
auth.simplimx.ai
app.sitelog.nz
skiklub-oestertal.de
signin.sommos.fit
stunting.online
www.superpizzaman.com
azmaroc.swapptechs.com
sweetspot-bby19.ca
css-tricks.tallang.no
theforgedeck.com
harbor.theoceaned.com
ecn.triomarkets.eu
tsunamiops.com
www.urbacasa.es
vantas.app
visiohabitat.eu
visiohabitat.fr
rdw.walstra.nu
www.qa-fte-calculator.work.gd
admin.xnetworkaz.com
gfb.yswyyds.com
Other domains in certificate