Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.gaelictech.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
54:5A:4B:13:AB:79:2B:C9:B6:6F:80:88:66:F8:5B:B8:6E:42:AF:9E:31:58:1A:D6:E4:63:B1:CF:3A:7B:FC:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.tappsports.com
fmb.anjumaneezziboston.org
inventory.auxetic.co
my-resume.azul915.com
www.baby-pouss.fr
app.battlemaps.online
qrcode.brainyware.ai
www.btcalm.com
btpconsulting.hu
ceyloncodelabs.com
chindomatch.com
auth.cloudercoder.com
sip.stulzindia.co.in
codiit.com
www.cognocore.com
oks-kamini.com.ua
padmap.daysix.dev
www.delestrade.co.uk
v1.dhruvkumarjha.com
casa505.edcliente.com.br
edumynd.com
app.fastget.com.br
www.fitfathom.com
bimsem.flockim.com
flutter-chat.dev
forter.dev
links.frataapp.com
www.gaelictech.com
www.getfabriq.com
gsscyber.com
www.iamasoft.com
www.inappsolutions.com
innabook.com
ivlivs.dev
jeff.ski
www.jeggert.com
link.kanjiverse.com
app.karwei.nl
okcd.kisscam.com
www.landscapesrilanka.com
www.liliankirui.com
dashboard.lstautoparts.app
www.ltcpowerrentals.com
lukelmenard.com
analyticsowl.madhive.com
www.mapofbeers.com
bonjour.megataxi.com
escape.minglunshao.com
moinworld.de
mosevang-jelling.dk
www.murcianys.com
www.mxtp.es
app.nanashippingservice.com
pic-buccone.mentor.neccton.com
pymd.nextgentechdaily.com
niloktar.com
onetwentyone.games
cp5767590991364096.order.place
app.paggoapp.com
w3c.parradism.com
tictactoe.peterkajokole.com
polemovebook.com
postproductionsorted.com
www.prestigioushomerenovations.com
pulseme-app.info
qingluanfeng.com
www.qualitasasesoria.com
quiznatal.shop
radoslav11.com
myfinance.rainierai.com
report-hub.recordunion.com
www.recover-hub.com
recruitingwith.com
repka.dev
saltybytes.au
docs.samyama.ai
www.sebastianwilczek.com
app.senpai.es
grupojcr.srv.br
sunjnallc.com
sunwellnessacupuncture.com
www.syncdia.com
teamatnet.com
techkuji.com
techlyverse.com
auth.thecv.app
strongroom.thewordisbird.dev
app.think20labs.com
inview.thirdeyedesigninc.com
scoreboard.time-drops.com
townleycabin.com
secure.treembo.com
ws.vanishdata.com
viamg.com
yakkaistudio.com
embed.yayocode.com
yolandastudioschios.com
yusufkilic.dev
zsh-prompt-generator.site
www.zykain.com
Other domains in certificate