Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=strange.garden
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:C8:34:35:8C:44:D9:4E:EC:89:8D:42:4B:32:F8:BF:27:7B:86:B2:AA:F8:77:3B:CB:91:50:24:C1:30:DB:FE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.supportbiznow.com
alpharesearchsurvey.in
ankitportfolio.de
biscuit.console.appabrik.jp
www.apptransportador.com
clientes.baleartac.com
beytna.foundation
promo.bikeitau.com.br
clash.lol
systa.clau.io
www.climbradar.net
www.mbarchitects.co.in
cooperative-dev.grobox.co.ke
www.codeschool.london
policy.aircondspecialist.com.my
zh.iwealth.com.my
congregate.me
infofamilia.csdm.cat
bestellen.deniz-grill-duisburg.de
devrel.nexus
app.digitaldistrict.ph
shinato.for.dinii.jp
elgeplusappsadmin.elge.in
rushcountynews.enotice.io
entrejourn.in
app.eule-elli.de
elearning.facforpro.fr
geneseed.ph
provini.genvision.it
gielczowski.com
hertenberger.gocad.de
iandre.ca
idea-cli.io
app.intecpro.net
share.itoldya.net
memegenerator.j7126.dev
karakayamehmet.com
kleung.page
www.kosmoswma.com
dl.lockvue.com
www.lparts.ge
lygis.top
www.lykemynds.com
www.m81.io
lanes.mags.gg
app.melabel.io
data.mesbro.in
mijowedsaneena.life
secret-santa.minhnn.fr
ssofb.minortom.net
www.mipathway.org
demo1.mmevent.no
www.moodjournalapp.com
mpfauwadel.fr
www.myoneid.fr
namehacker.net
studio.naomielliott.net
navbarplus.neptunecloud.com
dash.dev.orgam.io
admin.originaldog.in
paraisoshanghai.pedidodomicilio.es
pee.email
admin.personate.ai
admin.plussixfive.life
data.pueria.pl
pulsar.game
rayr.jp
rescapes.net
www.dropbox.ui-clone.ronne.dev
iot.smkn2kotabekasi.sch.id
servicelinq.org
spilakassahusid.is
strange.garden
bodamartinezlam.swanmoments.net
www.tallertopografico.com
adas-shop.tech-scheduler.com
www.teinsa-pa.com
www.thecompanyoffour.com
sandbox.thndr.games
todaycoffee.info
tomhermann.org
trackl.it
triuneconstruction.pro
ultron.studio
hadassahpa.um-manu.com
www.universal-tech.com
www.uscrowdmanagement.com
rg.vaihde.io
tap.staging.vendpark.io
dashboard.vesselmapr.com
viabilizei.com.br
vishwakarmainteriors.in
www.vrsgui.de
backoffice.v2.vtracksolutions.com
dashboard.wecashup.com
learn.wethink.info
www.williamvillani.com.br
www.wolfpackrtc.com
admin.youthstoday.com
emma.ziegler.systems
Other domains in certificate