Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=e-sihirbaz.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 14, 2025
Valid Until
February 12, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:4F:64:8B:AB:56:02:FF:35:32:90:FA:EE:B1:02:33:64:2C:06:5A:C7:F4:63:3A:3D:8F:8C:FC:1A:84:8A:DB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.petroservice-sdm.ru
auth.stg.adadapted.dev
aioper8.com
amerkovacevic.com
aminerehioui.com
test.firebase.arbiny.com
www.astartpiece.jp
astrovalleyhn.com
www.avitech.technology
sva.bkud.dev
mgl.cargacerta.com.br
app.cclp.ar
www.cielocity.com
notificacoes.clubedadelta.com.br
firebase.tbk.co.id
www.camerarentalhouse.co.in
xyz.maps.co.ke
fairbridge.co.zw
www.bhgroup.com.pk
www.cavcoffee.com.vn
dyhitargentina.com
e-sihirbaz.com
narcisomendoza.edu.mx
ednevnik.usce.ios.edu.rs
calendar.pathway.edu.vn
elettricistaimola.it
app.extendednightcompanion.com
faithflip.ca
pharmapp.fator3s.com.br
www.flytebit.com
www.freshprojects.org
demo-beta.hashdash.it
id.healthcenter.vn
himsonepat.org
staging.hubgift.ir
ialexware.com
imaseen.com
www.inovahplast.com.br
app-staging.ithrivefunding.com
admin.jacobe.nl
jamespackard.dev
www.jarmos.fi
joyhopp.com
kanofashionvillage.ng
kansio.cloud
komenelektro.nl
atelier.latontine-educationfinanciere.fr
leaderfox.app
www.leaderfox.app
www.leptorneios.com.br
ibeautycrm.lexcellence-grp.com
lizastudio.fitness
marcuspurnell.pro
goldencross.matracoding.com
promo.dev.mdovisio.com.br
admin.monee.com.br
nbk.my.id
fb.mypetchart.vet
www.n-web.nl
www.natigroup.com
nettipyora.com
noreply.cafe
odetoafricans.com
lane-test.oresundsbron.com
www.parachute.to
www.particleinfotech.com
workshop.admin.readyforkindergartenidaho.org
schaeferm.dev
servicemanapp.com
sma-gol.com
chat.smjleo.com
www.solofai.com
springvilleflyingclub.com
eotm.srbh.dev
pass.stellium.life
www.stockmarketheatmap.com
bartola.supervisor.center
surajdev.site
swedeninnguesthouse.com
www.takemeout.io
tchalupnik.cz
www.techflowmarine.co.uk
thatobaloyi.fyi
thebondiapp.com
admin-react-staging.themediaant.com
www.thewolfofmarketing.de
ref.tiande.ru
tic-tac-trivia.com
tiuleyeretzhmoreshet.com
tykoon.co
usmcocnoreste.org
admin.utnas-chatbot.net
www.venuspodcast.com.br
www.verrigonthuka.com
vivanceai.com
waters.earth
reshikatraveljember.web.id
gallery.x10designstudio.com
xrpea.com
yesmkt.bo.yesmktg.net
Other domains in certificate