Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mithraachildedfoundation.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 11, 2026
Valid Until
April 11, 2026
62 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
05:61:ED:53:B7:DB:1F:5E:D7:79:67:29:E9:D8:44:12:0F:07:AC:7A:9E:6C:EB:DF:16:2E:B1:5C:0A:C0:40:9A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.webazonic.com
sn.portal.adgile.media
agladuaneiros.com.br
raa.agr.br
bizstack.ajstacks.com
copybo.almacreation.co.jp
www.amaravatitechnology.com
admin.apoplanet.net
auth.azcash.net
sfusd.backpackfordrive.app
voterai.ballotda.com
bmw-suite.bertsmotorworks.com
bitsimply.com.au
payments.blackpugstudio.com
blip.solutions
bricksandmint.com
installatie.cafcasoftware.be
catetify.id
cheadle-institute.co.uk
www.cjad.me
heladosbon.clau.io
app.cloudmembers.pro
nawabii.co.in
www.techmet.co.in
tomago.coachcompanion.fr
www.hesrealequipment.com.ph
www.condorspace.co
gaming.conflictstudios.de
admin-staging.convercus.io
data-wor.com
www.dobedosoft.com
signin.grid.news
reviews.heidi-mode.de
hendlogic.au
hrayns.fun
lottery.lab.iidangooo.info
incardme.com
www.joshuamanning.com
calma.juanmg.com
khof.shop
kraftenergy.com.au
einladung.jakob.kuehlers.de
tracking.linkvn.org
www.lyomattomat.fi
m-acre.ca
www.magamkert.hu
magicwandai.in
makepad.fr
www.mathquizily.fr
app.meditbe.com
mithraachildedfoundation.com
mitra-homologation.mitraecp.com
www.montrealwebstop.com
admin.qaf.morhafshamia.xyz
landing.qaf.morhafshamia.xyz
sahanya.my.id
www.myanmar2d.com
lt.mydailywork.com
www.nachteck-dresden.de
hackathon-2025.nemtus.com
www.noxahayari.com
www.nqobi.co.za
onlinehalli.com
orbitgloexpress.com
petmarked.com
polygon.pixereum.io
plausible.company
plcarrosserie.fr
qadprecision.com
qualityhome.in
track.r-track.in
ranking-ubezpieczen.com
rdsfbox.eu
renatolacerda.com
kallakurichi.selvitravels.in
www.sergiocatumba.com
www.shouki.work
www.singel51.com
www.snkengg.com
stranahanfund.com
surmont.dev
bodarivassanchez.swanmoments.net
switchonstudio.com
www.talonsacademyeg.com
tangzhou.rest
ssma.targetmultimidia.com.br
www.tazertazer.fr
planer.tbm-event.de
app.thediverx.com
tijdschriftaanbieding.nl
www.tusharvishwakarma.com
qrorder-admin.ubiregi.com
howtologin.uzhnet.com
vertigofilms.fr
www.vetbro.com
link.visitherning.dk
workfromcafe.app
servicool.xittio.com
www.servicool.xittio.com
jason.zilbauer.me
Other domains in certificate