Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=my.spurjobs.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 13, 2025
Valid Until
February 11, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E4:81:F2:52:3D:14:E6:C4:EA:CE:05:2C:EB:5B:D8:48:56:99:A4:5C:48:DC:D6:40:29:C3:FF:56:5C:E5:31:58
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.stagiidepractica.ro
gage-cci.activ8games.com
addaasharqjed.com
www.aidorando.com
www.arunuday.com
athloy.com
audreyandshawn.com
www.audreyandshawn.com
updatepwd.randstad.ausy.be
autoolic.com
blakechartrand.com
manager.bookabyapp.com
booksthatmatch.com
bucataxi.co
www.buyonegram.com
pagos.celushop.com.ar
client4.citadel.tools
functions.cs.climacell.co
commerce.co
copyplag.ai
crescentdreamapps.com
datosmeteo.com
ad-portal.diamondservicesusa.com
xyio61lzcrw3xk.easyapp.co
edukun.com
electromagneticvalley.com
ercspeed.com
cheese.firelightcd.com
foolish.works
www.gabrieluca.dev
mygls.gls-spain.es
goverifai.com
hackerbay.com
hackthediff.com
corp.henry-app.jp
howtodoo.info
auth.hu-match.com
app.incidentli.com
admin.desk.inorisk.com
nitin.is-a.dev
portfolio.jaydene.dev
kaazahome.com
laurencurtius.com
leandrodias.dev
connect.leftbra.in
logandye.com
www.logandye.com
lollypay.co
lovetraveltours.com.au
www.maidinfloridaservices.com
pim.maksellent.com
qa.mastermindy.com
mcbrideesopsettlement.com
meeples.app
www.metatf.ca
mikehughes.dev
milistadecompras.com
www.mysatchel.app
cdn3.myxed.com
neman.hr
nkhayatcs.com
official-parktownresidences.com
ordore.com
www.osmanjimenez.com
pahincho.com
partydredge.com
paylinkz.app
bar-esterri.pedidomovil.es
kartkonundrum.polngames.com
portal-dev-mobile.princhealth.com
www.base.quadrobee.com
web.querriz.com
quickpg.com
rahulbadgujar.dev
www.rankforsearch.com
rmxst.com
rukshan.net
rusbe.app
sammielash.co.uk
sanskriticollegetonk.in
seaycon.ca
www.shantanu-gupta.com
www.shinepayrma.com
crypto.shirtum.com
app.sohive.com
solanasantaclub.com
www.sollenne.com
my.spurjobs.com
sreetaramatrust.org
www.sukolab.com
lab.swetasales.in
takezoux2.com
ticketara.app
tmapp.tiempometa.com
vignanschools.in
webcop.co
whocopied.com
withmotiv.com
www.youbotcha.com
zulaykah.com
Other domains in certificate