Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=alex.zhovnir.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 25, 2025
Valid Until
January 23, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:99:74:CE:60:B0:86:83:F0:C6:51:69:CF:D0:1C:D0:7F:08:EA:65:53:38:57:8B:CE:17:64:C7:42:40:32:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.positively.se
geewa.12traits.com
29.yordangenev.bg
aichatverse.com
www.aireotechworld.com
nmtailoring.algoramming.com
admin.annabananabakery.ca
inventax.divergente.app.br
aprovespprotecaoveicular.com.br
babbeloo.info
www.betsantaanita.com
lite.caricami.it
casadeseveri.com
calidad.test.ccloud.cl
mta-sts.ccsd180.org
chat-simulator.com
cnmdesign.au
facilities.hpa.co.zw
payments.hypenation.co.zw
credope.in
famiquarium.cstolz.de
www.danielecarbonez.com.br
www.danielquevedo.com
delphicapital.co.uk
www.dl0.us
drvamshineurosurgeon.com
www.stark.dycar.com.ar
easyflightrewards.com
dev-manage.ecsdev.co.uk
jorge-app.eldiario.es
eliotberesford.com
essomani.com
earlysalary-staging.findynamic.com
app.findz.app
fitbooktheapp.com.au
gattenregnskab.dk
glasque.de
greensheetlegal.in
portal.prod.wetterdaten.hr.de
gate.mrdc.iot.in.th
www.jam-up.app
www.jorgewolftown.com
www.journeyproductions.org
jrayasarchitects.in
karaguru.info
www.karavaychuk.com
www.klinikhr.dk
www.lavanderiakyo.com
lempinet.de
www.loodesign.eu
mattv.info
m.mirinestore.com
kintai.mosa-architect.com
www.munbeob.com
links.mutual.app
www.myrnd.in
admin.octaos.com
mississauga.profit.orderprinting.com
ouardinianass.me
paris-turf.live
spleditor.paviani.it
petsspot.in
api.proinsight.co
acerta.quitapay.com
games.sassytuna.com
anthem-dev-usa.care-portal.sidekickhealth.com
studio-dev-storybook.sidekickhealth.com
developer.sirajulhuda.com
solloto.io
www.sophisticatedsip.com
stage.spiderweb.ar
www.splitatomlabs.com
sysadmin-beta.staffshift.com
sim.strategiaanalytics.com
supadha.org
tfter.app
thebflawfirm.com
www.theoryio.com
thepetdoor.eu
www.thereportinghub.com
www.cotizador.tint.com.mx
towa-kyoto.jp
www.trankllc.com
www.trashfusion.org
qt.turnosweb.app
unwiseproductions.com
usevideolab.com
app.vedicastroapi.com
vedichoroo.com
www.verifico.co
actie.woonveiligheid365.nl
www.word-count-tool.com
purpose.wowdesk.jp
fire.pt.woxtr.com
yesnolabs.io
www.zakwanashfaq.com
money.zhebil.com
alex.zhovnir.com
examples.zingchart.com
manul.znapz.net
Other domains in certificate