Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cp.beta.funnelish.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 23, 2025
Valid Until
February 21, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:2E:99:27:C0:FE:1E:0A:DC:17:C1:29:11:04:BB:C7:18:5A:A1:A2:FA:D2:B7:F3:2F:46:3F:44:8D:35:E0:47
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.ulkupastanesi.com.tr
accordle.es
adtvnetwork.ae
links.aestheticsmap.com
travel.agoook.ru
www.andrewchu.me
angelolucia.xyz
www.armath.ai
l.artpix3d.com
aufstiegsreform2025.de
bastiaanvandenberg.com
art.ceciroel.com
www.chingaderas.studio
classjack.io
cleo-childminding.co.uk
portal.bizminder.co.in
developer.ordern.co.kr
picpong.sntsoft.co.kr
www.crecerpediatriacusco.com
doctor247.in
www.drilldown.online
www.dungeon.quest
www.elearningipev.com
app.emergencydentaldirect.com
devfactor.factoringdev.com
www.france-budget.fr
cp.beta.funnelish.com
suite.geniustutors.in
bristol.gettwoit.com
www.ginarai.com
www.glex.io
garden.gorbotics.com
gracetory.com
granitebug.com
granmotoec.com
sheyla.test.graphite.space
shuri.greenstream.io
www.growni.sk
grupogasolinerosolidaridad.com
www.hadiabdullan.in
www.harrisburggreenways.com
plan.hems.flights
hoplaala.com
www.horm.cz
www.imonitapp.io
tomazs.impactwrap.dev
miicoro.irdo.net
arialmonconverter.iteach.mn
javions.com
jklundeen.com
www.juanplant.com
www.k2a.in
www.kamenski-logistik.de
w.pokerklas.klascloud.com
admin.kokofuru.com
leibovic.com
ligarechner.de
www.linetweet.de
logangrote.com
www.lucky13.net
protokoll.metrium.se
www.mhamza.dev
www.minimgroup.com
mintyfloss.com
www.mistergreen.fund
www.onlymilan.fans
www.pdw.io
pharaon.me
app.leparc.photofied.tech
app.pigtie.de
demo.plantiga.io
rvdupscale.space
www.rvwork.com.br
www.saritayjosue.wedding
www.shopdifferent.com
shopifydataconverter.com
dev.sky-leap.jp
slashbear.com
0j28swvb3iibxltoxeds.smartimob.io
wfdcmbqznst2mqpsugot.smartimob.io
link.songpop3.com
cdn.stinkysocks.net
app.strant.ai
studio-scout.co.uk
www.studioforged.com
www.supportatroop.com
bodafigueroaluna.swanmoments.net
www.tabledecoratingideas.com
reports.teamgoat.org
pointnscan.apps.techiecomputers.com
uplands.time-lapse-systems.co.uk
toei-yoyaku.com
lnk.unionbrevnov.cz
uploadsquare.com
fedex.versionx.in
www.viewmyfolio.co.uk
app.wizardlyai.com
woki.ar
workinside.com.br
cms.zlearn.vn
Other domains in certificate