Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=datamonastery.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 08, 2026
Valid Until
July 07, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
48:5A:1A:7D:BB:15:F9:BC:6C:5A:9E:FF:DF:A5:0A:8A:C4:4B:15:1B:71:7E:42:D2:BF:EA:CF:34:E3:8D:0F:CB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.vsolver.com
dev.feasibility.metrofibre.28east.co.za
crm.airlift.app
andrewkelly.xyz
do.atalayasar.org
auth.atomicx.in
autocheck.report
baoservice.net
bbmindo.my.id
web.bizflex.app
www.blogspace.app
bobot.chat
event.brut.live
app-jump.carecloud.io
cecilan.uk
cetinkaya.me
old.clustium.com
coffee-bits.pl
brightonstandardblade.column.us
www.commalert.app
embrace1fan2run3anticipation.contentfabric.io
cotei.app
cozumburda.net
crafthero.fr
datamonastery.co.uk
deepbridge.org
www.definaut.xyz
developersfordevelopment.org
ia.devvo.com.br
e-tailer.co.uk
staging.easypec.com.br
www.fieldmargin.co.uk
zur-post-panorama.flurweg.app
lhm-fk.get-ikigai.com
lhm-nwk-3vd.get-ikigai.com
getawayai.app
www.ghomi.dev
accounts.happily.ai
harmonyafrica.org
hoogersdigital.nl
hoopsandcrosses.co.uk
ibdaa.eu
app.immunyfit.com
inomis.life
isdsolutions.org
kingssportsbar.uk
kovaiiyarkainalasangam.in
www.kutomonurture.com
www.liftandflow.co.uk
partner.loanready.me
business.lookzup.com
www.luxxymotors.co.uk
mastertouchinterior.ae
123noel.merci-michel.com
mergeqa.mitralab.io
makeitreal.mobiledevotee.com
www.moreaboutme.fr
mortensen.vc
msoma-dev.org
www.mujeresprogresandoc.org
mkt.murohybrid.com
nutricheck.nl
nuwana.ai
www.offthecurriculum.co.uk
link.openology.org
www.openplaypickleball.it
hub.test.orangeroofs.co.uk
owleyewearadmin.xyz
piximelody.xyz
bingo.raffiesaurus.com
rdthompsoncontracting.ca
www.rksahu.com
www.scoreside.app
shrinivasjadhav.in
www.sibgrupa.com
www.sigecahome.com
wzto.spadilha.dev
sportstracker.app
ssebowa.ai
statistics-football.com
stoppieczywu.pl
studychain.academy
sxills.ai
community-staging.synctalk.us
tailtale.app
tekxpert.co.uk
www.thefirst.in
thisismma.app
auth.tiptopjar.com
static.toejambacklot.com
dev.devops.vaidhyamegha.com
vegstreak.co.uk
vickydev.com
walkerandfriends.com
websitedocaralho.com.br
www.wellbeingpassport.com.au
wildwildventures.com
blog.yargies.com
yasserpulido.com
yeahsum.com
Other domains in certificate