Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=financefornonfinancialmanagerstraining.ie
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 22, 2025
Valid Until
March 22, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:E8:C5:03:B9:65:58:7D:5D:0C:F4:A5:8E:95:8D:73:B6:12:BE:5A:14:45:C9:07:BE:7C:0C:52:D2:10:28:97
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.nashwit.com
abajszos.hu
www.abcxyznft.com
accleaninginc.com
cv.adamino.dk
alexandjanine.com
dev.andymaclaren.com
arukura.anycloud.co.jp
biscoiteriacac.appshare.com.br
auth.arctica.ai
arthasangraha.com
download.assistine.com
int.bfuk.org
www.bloggingfordevs.com
www.bluebird-teaching.com
staging.public.bridgingmedical.com
dblz.broccolirecords.com
support.campnote.net
area.chromo.jp
clearcut.tech
lifeengine.co.kr
convergentuae.com
diplomska.mk
dogwoodtech.com
draanateniente.com
dividends.earningsahead.com
admin.electrifyze.com
stage.contact-center.elli.eco
espressoandpoetry.com
rc.evpuri.jp
advanced.felixxgroep.nl
financefornonfinancialmanagerstraining.ie
migration.flowup.cz
garrettspence.dev
www.goalstatshub.com
www.goldschmiede-ammersee.de
www.gpdrtmaintenance.co.za
guestodo.com
m.hibikirun.com
points.imaginexlabs.com
insynctherapies.in
invecom.com.br
js-api-doc.ipresso.com
www.jorntech.com
joseantoniorocha.com
novelku.kues.us
go.largely.com
forms.listique.com
lloydevans.co.uk
mackintoshsecurity.com
auth.portal.marketingbear.com
coc.mausts.com
www.mediocremelodies.com
auth.mxmnews.com
payments.mykinetic.io
w.mytc.work
share.nenerentcar.com
nexti9.com
www.nortexpack.com
www.ouchiacademy.jp
vms.p2digital.com
client.park-nav.com
promosiv.com
mastest01-link.propertyloop.co.uk
www.provbeats.com
ramadhvni.com
jp.realbyteapps.com
rekoapps.com
staging.office.resbutler.com
concurso-entel.rinnolab.cl
api.sensi.ie
seo36.cl
www.seudev.com
admin.sezeret.com
www.soozane.com
www.spiceau.com
www.strategicfilmdistribution.com.au
sunnivasol.com
www.swiftrobotics.ai
swsec.kr
talkyplus.com
web.staging.terminio.app
themarathon2024.com
www.thenerdlabs.net
therecruitingbox.com
thomatos.co
todosteps.com
traderbase.co.za
helper.test.trustdock.io
turbo-topup.com
staging.insights.umanni.com.br
www.vlconsulting.cz
lms.voxmedia.com
opal.weave-social.com
wen-and-y.com
wiggle.tools
site.winecode.app
www.xebridge.com
tools.yaklin.ca
zachfleck.com
Other domains in certificate