Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=horizonopticaldrones.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:D0:D1:0B:09:9B:C7:52:D3:E7:18:AB:7D:26:5D:52:31:0D:4E:4D:08:2E:58:3A:A0:ED:86:15:A6:FF:D7:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.xippl.com
vx-holdings.app2.1on1navi.com
www.24-stunden-pflegekraft.de
addons-studio.com
aetautomotive.com
airinevents.com
admin.anajak-tshirt.com
www.aravaliinc.com
battlecollage.com
bertolami.net
www.bestftso.xyz
www.beyondcentral.com
bitsuneed.com
as93.bols.dk
campbunking.com
www.cardzmania.com
portal.catholify.com
celineinsuline.com
www.ceva-fastpas.com
christianchenliu.com
simsak.com.ng
www.mrenterprises.com.np
hymns.com.ua
communitymeeting.app
www.cruise3d.in
cyberwebconsulting.com
www.cypherpulsar.com
darumapay.com
demonraven.com
dezwon.com
app.directumtranslations.com
dixapp.com
timetrack.dta.dev
web.dungeonpaper.app
app.efficientconsulting.ai
www.emmaly.ai
www.endurorollchart.com
www.eojeah.app
www.figgili.com
getdroptaxi.co
check.out.gohenry.com
www.gpacini.dev
gutter3050.com
heilpraxis-silvia-schuhmacher.de
www.heromode.app
horizonopticaldrones.com
www.if-then.dev
p902i.ikuzaki.jp
uygar.isicelik.com
sokov.jakb.cz
www.joshguyette.com
kintsugi.vc
life-qwest.com
pay.life.id
auth.logistia.app
lundataxi.se
lundincast.com
ferreirarestaurante.lupi.delivery
certificacao.luxcs.org
majostugan.com
www.mariverse.ai
www.markpoulsen.dev
www.menthory.app
moonjason.com
kanchipuram.mukunddroptaxi.com
www.new-immersion.ch
nicholastobiasart.com
ohgenome.com
tags.omputag.com
demo.onb.vc
www.oninov.fr
app.opuswatch.nl
dev-app.otb-academy.com
paradoxbuilders.com
mice.phuket.run
www.prio.day
www.rasmusgerdin.com
rfk.camp
student.rlabsu.org
zis.rumahamal.org
scheffemer-kerb.de
searchracs.com
www.shucode.lat
www.siegelion.tech
www.simian.co
solusimerah.com
macutriviaseg2.sqwadhq.com
stat-stars.com
www.swissmarine.com
evento.taniafruchi.com.br
cue.testline.cloud
tolink.services
travelplusprotection.com
dellcapital.turbosbir.com
www.turbowallet.app
www.unitymma.ca
veljkoplecas.me
tms.wisani.co.za
www.zennetaler.be
www.zenreki.social
Other domains in certificate