Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gcconsultancy.my
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 16, 2026
Valid Until
July 15, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:FB:DE:E3:AD:2D:15:CD:10:89:1A:45:07:B7:9C:05:82:D9:78:42:05:BF:F7:2B:8D:FD:4E:E3:FA:50:B3:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.ptext.io
www.365things.co.jp
apptico.com
lms.auribises.com
camera.azrs.jp
username-generator.branhill.com
landing.bravemakersshop.com
orair.bullet-mobile.store
www.busico.net
report.trackimoplus.bycopilot.com
www.calvinconover.com
www.fifa-calculator.celtian.eu
chakram-solution.in
charliepark.com
co-modo.it
staging.countdowndays.date
auth.auditboard.cyberhaven.io
k.daasa.in
www.dennisvanbeelen.com
www.digihealthpe.com
portal.directpay.lk
droptaxicars.com
www.droptaxicars.com
work.elevationai.com
erenge.com.br
book.finni.health
foodieshare.us
app.fridgeman.io
garageratscarclub.com
gcconsultancy.my
auth.getdebatable.com
www.govetery.com
www.highridge.app
dynamic-link.dev.testing3.huvrdata.dev
www.ibrahimmoalim.dev
miles.imapapps.com
www.influenceprofessional.com
www.investoedu.in
app-qa.isanku.co.za
thuy.jacksondavies.me
wizard.kgbp.de
kienvue7.id.vn
dev-app.kraaft.co
dashboard-staging.lefty.io
lipojaronew.shop
www.looby.me
maiaindia.com
malimor.store
poke-calc.maripi.net
mastersaccountshub.com
metarational.net
www.miinventors.org
mj-fj-wedding.com
www.motorfiets.jp
mymiibo.com
nnuity.com
nthuawb.tw
nurturewellness.co.in
bingo.otobou.com
pitch.paintwalk.de
pbfindia.com
www.pbfindia.com
www.phoneboothprivacy.com
www.plasticity-cloud.com
www.ppkk.fi
pushpaco.com
partner.platform.quiron.digital
links.raidsrc.me
www.rajatvishwakarma.com
www.rateyourdorms.com
www.realtradeinc.com
recyclescrap.in
reibbwportal.com
robot.sciencecafe.cz
www.shadowflips.com
siapav.it
app.soulben.com
jacklinksscratch.sqwadhq.com
sutterhomescratch.sqwadhq.com
studiopixl.com
qr.styreportalen.no
auth.synaptograph.com
taylorandalex.com
app.teamelmers.com
thesmilesurvey.com
checkin.thursdayhq.com
afrikaans.toddlerflashcards.com
tradoglobal.co
uh-balam.com
vednetic.com
recallrocket.vibestartup.net
vieirarocha.com.br
app.visualdataflow.io
webmirror.online
whoisrocket.com
wisehackr.com
video-rooms.worksup.com
my.zaplify.com
webapp.zatobox.com
tsukuroma.zenselect.jp
Other domains in certificate