Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=3d.holosplash.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 28, 2025
Valid Until
March 28, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
97:5F:1E:76:41:2A:72:4D:99:89:94:5B:43:7F:70:B5:A6:4C:B1:8A:E4:60:D7:65:66:4D:1B:60:29:CC:C8:CC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.waivepro.com
dev.2nd.gdn
karateanna.aimcomely.com
aliensguard.me
www.aliensguard.me
allin1bitcoins.it
alt-coin.watch
kit.be-hookd.com
mercury.bpmcenter.pro
braincake.school
bvinfoprodutos.shop
empresas.carbee.top
cedardrivingschool.ie
www.cintel.nl
admin.cityrath.com
olgatherapy.co.il
ad.wizdom.co.kr
www.fintech1.co.kr
www.maxmini.co.kr
cre8ivemedia.co.uk
www.daask.co.za
vaoinspection.demodev.in
www.easyeatsordering.co.uk
emoji.chat
app.energitanken.com
www.escrivaninha.pt
giovannimariaferri.it
www.gisua.com
govlyhub.pt
gradly.it
covid-19.greagori.com
heimdal.is
www.helena-ruao.com
vtic.hemisphere.digital
hexcreators.com
hillendallotments.org
staging.hioperator.com
3d.holosplash.com
ar.holosplash.com
hostingemails.com
hubnerdev.com
www.hvaskjerimidtregauldal.no
call-diversion.hypnotize.nz
imersao.igrejadatrindade.com
link.in-time.life
chustphr-id-testing.input4you.be
integratedsolutions.ae
app-vitalii.investico.com
www.jetsyt.com
jfaramburu.com
www.joemilham.com
jorongo.dev
karatecrush.com
www.kartsyapp.com
kinematicsclasses.com
konsio.se
projekt.korakademin.se
www.kovats.biz
learningorganiser.com
lilynovaart.com
lovesrom.com
malevolent.in
link.mannki.app
azure-test.mayamd.ai
megahit.love
meganandpage.com
mindfullock.com
www.mindfullock.com
moonpile.com
www.mylawadvisors.com
nemitzam.com
www.number1pick.net
www.gkbi.or.id
paulinaliwanag.com
pdvpizzaria.com.br
minicrs.proenerg.ro
pstsmartcard.in
qrew.com.au
quantum-operation.com
www.namibia.quickcheck.co.za
rajanequipments.com
regmedai.com
firebase.revi.wiki
reyersheyde.nl
shaftnseal.com
web.skelf.org
www.socipod.com
sortis.in
www.sortis.in
app.studioalfaargenta.it
svsinternational.net
beta.bo.symbioz.io
www.therumplum.com
app.tradecarbon.earth
share.videoxhub.top
admin.voamobileendpoints.com
m.werktijd.be
www.willdunkl.in
company.eu.wowworks.org
www.yourcentertvm.in
Other domains in certificate