Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.sportzkart.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:B2:B0:42:3D:BF:7F:71:44:17:0F:3B:3A:1D:3C:2C:02:92:21:8E:9A:B3:F1:0E:14:01:42:40:E4:6B:0C:A9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.menu4k.com
100aif.ru
bookings.1721hires.com
auth.1vn.app
www.dynachess.angeldao.org
artifice.art
www.artmvstd.com
www.as211776.net
atirenovationjeancortes.fr
cats.benzenker.me
dev-link.bharatcash.com
bio-circle.be
blair-capital.co
www.blockchain-foundry.co
bubblesbypedi.com
chillndfocus.com
dashboard.ciccan.com
staging.claro.vip
www.wms1.co.il
alphanutrishop.co.in
www.copseauto.co.uk
www.cyberink.dev
www.cyberstewards.com
dengen-cafe.com
demo.dev.disruptive-technologies.com
drcarlosfreire.com.br
enapsi.com
enloka.com
myfirstapp.exystems.com
finometr.money
go-pt.co.uk
www.goodsseason.com
nagaadmis.mpwr.gov.so
grainfull.in
www.gundo.app
www.innov18solutions.com
app.inventorysimplified.com
mentorship.iranwic.org
jeneric.us
www.blog.jfarrow.co.za
www.jlconsultorias.com
dashboard.kampaignlive.rw
admin.kangastore.net
www.kelvys.com.br
admin.kolayyolla.app
ladder.to
electricboogaloo.mackree.se
makeitbetter.studio
tiquipaya.makepoke.com
marnen.org
us.mathem.org
megunisexlounge.com
teachers.mulmet.com
cleanify.my.id
mygiftmoa.com
lms.mytruetrader.com
navneetht.com
users.newsware.com
www.nickblanding.com
share.node-tool.com
chatbotui.stg.novafutur.com
tokoku.ogestudio.com
www.onitfashion.com.br
lore.orbitist.com
oh.dev.ourhello.com
pibgmais.com.br
paramount.pixeldustinteractive.com
www.primusclassroom.com
psielianesiqueira.com.br
rayanlaundry.com
rcbgroups.in
mood.resn.co
scenarioprotocol.com
searchingthinair.com
data-int.setkeeper.com
somecatchall.com
soupmania.lu
admin.sportzkart.com
sqwadbingomlbdemo.sqwadhq.com
stellarstayhotel.com
documentation.superna.net
www.supremeindiaassociates.com
swadleyroofsystems.com
motogp.tafasa.com
taleandstitch.store
www.thecellarapp.com
thinkcomputing.us
thunderjungle.com
trincohub.com
link.itg.trustidiom.com
share.twigbig.com
www.ubytovani-vera.cz
www.universitydao.xyz
www.voidapps.co.nz
homegauge-test-portal.warrantysphere.com
webdesjn.org
whatsmyhood.com
www.wonderfuldeath.com
medstocks.yaphanyee.com
zackzhang.dev
Other domains in certificate