Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=swap.ninja
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:72:D6:1C:41:30:7F:39:5E:E9:18:0F:73:E4:A8:A4:43:29:E2:4C:EF:8B:5B:FE:28:8B:D3:F2:51:BE:0A:9C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.robotanium-admin.com
protech.3diq.com
afterlife.garden
privacy.alfred.cz
all4cleandfw.com
quidpro.alledotech.in
appvocate.co
aruku.ai
axionlabs.me
beautyhaven.in
besthrtools.com
app.bigblue.co
promo.bonheurmusic.com
brandoncluff.com
brilliantask.com
api.bronid.com
careup.me
cdk-group.org
bravo.ynet.co.il
ssmb.co.kr
labeling.datafirst.co.th
make.codebotlabs.com
coderonline.in
brukking.com.pl
www.counterswipe.com
staging.admin.courtisan.dev
coxinhadahora.com.br
nibako-mng-stg.daihatsu.co.jp
digiwills.net
ieruraltecnico.edu.co
eternisgroup.com
europeandriversacademy.com
faraoneindustrie.com
www.app.farmaciaformulario.com.br
www.fashionmejen.com
www.feeltonemusic.com
www.filipmarko.se
link-test.fintecture.com
gogl.to
hafez.de
feedly.hassanalrawi.com
hazbase.com
app.hexyx.com
iheartlindsey.com
docs.in1.ai
invent.ly
www.jointri.be
kiexi.com
www.lazychef.io
leataranto.com
libertarianism.info
care.stage.lifemd.com
www.lish-eikaiwa.com
mymoney.lucaslab.dev
gadoforte.lupi.delivery
lyddy.stream
marynn.art
maryrmonsted.com
meagherccf.org
www.medeberya.com
link.memble.app
www.micasitaclarinda.com
www.synopsis.mindmilieu.com
mods.minecraft-event.net
moesalih.com
www.mountainpinesplumbing.com
mozaicgroup.com
my-travel-checklists.com
neconeco-defense.jp
nickblanding.com
northwest.band
www.nuqetech.com
admin.ochy.fr
odeskkenya.com
oneiric.fr
blog.paprica.dev
photography.phineas.io
programination.com
oldivy.queliga.com
raghvendrahospitality.com
sabooautozone.com
stockcheck.sacodaserv.com
new.safetysync.com
app.saharmall.com
www.savetofuture.com
schoolhubs.in
shishirtandale.com
spyonwallstreet.com
sterlingoakridge.com
studioduecento.it
swap.ninja
www.teevox.com
traversal.co.uk
unleashing.tech
www.visualcommunication.agency
www.vuyap.com
wordblitz.de
accounts.dev-subscription.ximera.com
www.xlayers.dev
gp3.znoj.cz
Other domains in certificate