Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=boccachica.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 27, 2025
Valid Until
February 25, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:52:4B:E9:89:8F:48:27:9E:6A:D7:16:37:86:44:62:08:96:C8:2C:34:09:83:49:03:A2:90:26:03:01:64:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.vitalsleuth.com
d.0br1.io
www.4hani.in
adisshopve.com
studio.aegro.design
www.aihearu.com
www.allstar-care.com
alquimcare.com
aplinder.com
dev-ui.applogie.com
argonaut.energy
www.atulsable.com
www.auvura.com
battle.online
castresolympique.deeplinks.bfansports.com
admin.bites.fi
api.bludapp.cl
boccachica.fr
halp2023.borisvitazek.com
bravoi.com.br
www.breatheyourbeing.com
www.bumikids.id
dev.chekhealth.ca
chooseshapes.com
chronoquota.com
clico.link
closethedoor.com
latifaktas.com.tr
www.contributor.pw
losangeles.csc-usa.com
cvgranskningen.se
www.darumapay.com
www.dbilabs.com
khidmatapp.deeniyat.com
deepnetlab.com
diengcool.id
ducapro.com
www.effai.me
www.embarkrpg.com
www.evnsteven.app
evprime.com.br
e-booking.exceltrend.com
farmingdata.io
fatboypizza.eu
accounts.firetrolm3sync.com
focuscv.ai
maxol.fuelservice.org
fxcatalyst.in
app-referrals.genuineimpact.io
www.golf-cart.it
gourmetgurugroup.com
myriad-n-va.groupeducroquet.fr
gsprogolf.com
harimau.run
www.herbosang.com
ilyapisman.com
widget.instaset.ai
wotr.jackofallcode.net
checkin-stg.jins.com
joaonunesrigo.com
karolyhornyak.com
www.karolyhornyak.com
app.lazulibre.ch
www.lightassistant.com
www.lisnailsandspa.com
www.logi-vietfrance.com
admin.lotuswages.com
www.lumisolenergiasolar.com.br
mathlove.us
www.metaverse-biz.site
crm.meurefugioconsultoria.com
www.miguelpolonio.com
m.momentsapp.ae
moreee.co.uk
mrmonitor.com.br
www.mudrgarlikova.cz
sandboxv2.mycosense.app
stagingv2.mycosense.app
www.ndisinsurance.com.au
nrsk.co.jp
cityofraleigh.opendata.report
www.paragonln.com
phymol.net
pollbuzz.app
www.pollbuzz.app
portpal.ca
rmanimations.com
roach.md
tickets.roobixapp.com
soleministries.org
stompinggrounds.games
www.sunrisekindergarden.ro
l.synack.live
www.trenty.net
partnerzy.tutore.eu
ultimatetimer.net
www.utilee.app
vezerlespanel.hu
agilent.ws.agency
api-qa.yasmina.com
Other domains in certificate