Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.non-standardworld.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 25, 2025
44 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B0:CA:9A:E3:70:3C:D5:B8:4D:24:F3:07:BC:43:61:75:A3:1B:58:33:BE:B6:76:C1:C7:81:E7:F4:0F:0A:1E:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.wcf25.live
share.aafront.org
bolt.acaisoft.tech
pdo-connector.schema.alumio.com
clickncheck.ambedo.io
amnistiegj.fr
andrewpohl.com
aniwave-to.lol
auth.app1svc.com
store.ashyaat.com
oidlearning.askmeidentity.com
www.astrumgames.com
bakeandmade.store
bigfuel.com.au
bimily.net
www.bm-aufkleber.com
t.bovo.dev
brenshots.com.br
neat.camberi.com
carstation.autos
academy.cloudframework.app
fcf.cryocloud.io
czarnecki.dev
www.deankiosk.com
deptu.chat
dinoza.net
www.diskette.tech
ck444.dpl.ac
akippa-owner-recruitment.contents.ds-carlife.jp
www.ent-heldebaume.fr
www.f-navi.org
fabric-care.net
erp.fernfieldhomes.co.uk
a09w.foodle.su
sd.geeniux.com
app.getmemoirs.com
gigmessage.com
auth.greenlease.me
angular.hexalogy.com
hilla.design
holdtheholding.com
www.humanitas.ai
ikigaimediaatl.com
jatosuportes.com.br
jnesistemasolarecftv.com.br
www.johnmarquard.me
phonelookup.jonlowrey.com
jordanrhodes.dev
www.lakshyaved.org
liesbethdoomen.nl
admin.liveticket.app
lud-sa.app
www.magizhangadi.lk
www.mayankahuja.in
www.medicaltime.org
school.medua.me
coopmauricie.megataxi.com
www.miamifashionweeksummit.com
miradores.co
ishealth-studio.mor.company
www.murraywlee.com
natkailukasz.pl
www.non-standardworld.com
okie.au
app.onfact.ro
parallellearning.in
www.partnerwithreach.com
www.prestigelife.in
www.pretitle.com
trace.purejoyhoney.com
www.qad.fr
roguefairy.com
www.rohitsuratekar.com
sa33.com.br
leftovers.samuelhornsey.com
app.dev.setscale.com
investment-diary.shoreco.space
kb.sipofcode.com
www.skolaindigo.cz
scp2-qa.sms2mkt.com
api.splitit-fs.com
srrtemple.org
www.stareintothevoid.com
www.statuspropertyservices.co.za
swissmarine.org
test.take5benefitsalliance.ca
www.theminutejournal.com
thepeachyplanner.com
www.thohtdelta.in
tnddesign.co
www.tom-cat.co.jp
beta.ultrafora.com
www.ultron.studio
useheartbeat.com
ppr.usemason.com
valientesconjesus.com
waveringstripes.com
wetheconspirators.com
wordbird.pl
workalogic.com
Other domains in certificate