Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.buildingcats.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:4D:AF:38:F1:1A:AA:11:9C:37:5F:11:F5:43:A9:B2:EA:90:21:31:3F:40:42:98:49:BF:BD:AD:B2:1F:72:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.pixraider.com
11521979.peerly.app
208busybeehandyman.com
adsconstructiongroup.com
www.agrocontrole.ch
aifriends.in
lk.am16.ru
ambrosegaming.com
app.archerypath.com
mt.ashukumar.com
aimmo.bluewhale.kr
www.buildingcats.co.uk
burgervurdering.no
api.celebreak.eu
cemjsolucoes.com.br
ci-candidate.cnect.jobs
techpot.co.in
bnbd.co.kr
coldemailgenius.com
bash-uiux.com.ng
admin.ehs.conny.tech
www.covertek.fi
lecomptoirducheveu.d33d33.fr
www.dancosolutions.ro
bulten.darussafaka.org
workshop.dataknobs.com
qa.cabinet.dah.devserver.cc
clasificados.diariodequeretaro.com.mx
www.e-biex.cl
www.eccjan.com
procesos.elebano.com
www.entityx.io
www.fitapp.lu
floriculturacriative.com.br
celeste.oaklynnmielcarek.fr.to
www.frogbanter.com
gl.getglue.co
release.getoutfit.app
mail.glassmaytes.com
judge.greenawards.ie
dev.grkn.it
haasjennsen.ee
hotg.ai
link.how.fm
www.hty-code.com
humanaassist.app
haianhduong.id.vn
toanchaucndt2211.id.vn
jesusgpt.in
www.jetfalcon.com
alpha.keegym.io
sheeter.kelivon.com
app.lasyn.com
www.lofstudio.com
www.ludonauts.com
maintenance-enterprises.com
marmartahery.com
admin.menyu.me
app.minskolklass.se
namadahub.org
www.nammaimeenagam.com
panel.ndhp.pl
www.nostalgiiagames.com
www.ogurayafuton.com
demo.onceaccounting.com
onerun.app
pagoapp.cl
www.pingo.one
app.preadiccion.com
www.preadiccion.com
prestoncinema.com
www.psychoterapia-wojciechowska.pl
www.puzzlebookstudio.com
mc-legacy.pwapilipinas.org
creators.qfix.ai
quantumassists.com
policy.quicksave2u.com
warehouse.rcloud.dev
rencityart.org
www.saintleocamps.com
beerschot.scouthub.app
galatasaray.scouthub.app
www.smallbazaar.com
podeliha-app.speakylink.com
stenopad.stenokeyboards.com
strudel.pub
www.taxiassociations.co.za
www.technaur.co.za
www.theclevercraft.com
thepetdoor.net.au
toworky.com
connect4.trandrew.ca
residentfees.veltech.com.au
stage.verdensbiblioteket.no
app.viaggiarerent.com
www.yufw.dev
shop.zajzajzaj.hu
www.shop.zajzajzaj.hu
app.zfluence.com
zknzcode.com
Other domains in certificate