Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=switchgrassdesign.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:F9:99:56:25:C4:4B:EC:36:69:0C:E3:2F:D8:34:48:61:54:0F:12:B7:F8:46:F9:A3:B4:6F:7F:06:3C:32:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.sunwellnessacupuncture.com
11520881.peerly.app
149.ai
3092.gamefp.dev
alexsalov.com
alwscms.alightwaysolutions.com
links.andrew.golf
www.angelstakepool.net
boostmente.com
www.bregjeadvies.nl
www.cat-finder.co.uk
www.censura.ru
cf.studio
df.te.claridash.com
journal.coddy.app
www.commentextractor.com
www.davesroyorbison.com
www.kg.droov.io
clasificados.elsoldezamora.com.mx
ballz.nerf.emallstudio.com
www.ente.com.mx
power.eventtravel.app
www.gamerlink.app
garygrade.nl
gemanor.dev
www.gemhs.net
beta.getarchetype.io
www.gravenight.app
guurzua.dev
link.handballrudow.de
www.hikari-fast.jp
hq.incontext.email
ispcontrol.pro
devnet.itembox.app
www.itsaclinch.co.uk
jbd.dev
backpack.jcps.me
www.jedidiah.eu
app-stg.jicki.de
kana-list.com
kochamciekotek.xyz
kumarpankaj.site
www.langmatch.app
admin.lendcoserver.com
live-quiz-mobile.logicwind.co
mbmitchell.me
mdra.world
milkcartonprojects.org
destil.mobilenxt.app
monitor.lamun.my.id
admin.myovolt.com
www.nopea.io
plans.oakwoodfriends.org
portfolio.ohagi.app
link.okani.app
cloudprint.order.place
gh-portal-dev2.pbcd.net
prashantsinha.in
printbox.ae
www.purpleknightcamps.com
ratality.com
www.renjuki.com
www.retatrust.org
www.rotobot.com.mx
rumeysacelik.com
legacy.ryanism.org
www.bot.sagradafamilia.org
sancarlosbride.com
sdgolftrip.com
shaileshpendam.com
devhome.simplevisionboard.com
link.skibble.app
sledee.com
sleepy.help
smartracks.uk
www.sokool.today
spendhelper.com
app.spendora.co
startech-digital.com
www.staycleanmasters.com
www.streamlion.io
switchgrassdesign.com
www.tasklender.app
tatapmis.com
thealphonsobrown.com
www.thecutedosa.com
www.thegurupool.com
www.thevectorsum.com
touchpad-blocker.com
tranzita.com
www.trendzonebarbershop.com
www.tristolliday.com
docs.trust.lat
www.tsk.si
guia.destinosinteligentes.tur.br
dashboard.untilit.works
vedexit.com
www.winitoe.be
www.wowleads.com
app.ymgrad.com
Other domains in certificate