Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.putyourphoneawayday.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 31, 2025
Valid Until
March 31, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:02:B3:0C:CD:C1:95:36:F4:F8:61:01:4E:BE:01:96:D0:82:FC:89:05:A4:AA:B4:39:BB:EE:D0:A7:78:C9:58
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
xcapeinc.com
130rqs.com
lamarca.2na8.dev
www.allinoy.fi
app.amihomecare.com
www.artbeatentertainment.com
www.bared.au
ccadmin.beepr.de
newsbutler.bothrs.com
walmart-stg.braid.health
www.brokenpurrs.com
cardbook.me
ccets.100.pn
www.chart-traders.in
chi-value.net
www.compete-game.com
cryptophasia.net
static.csrpglobal.com
cupcat.games
cups.kr
daikanyama-sanpo.com
dialinespresso.app
digitaltranquility.nl
dotoday.io
www.drkiransdental.com
www.eirinc.jp
www.embec.tech
www.fimatica.com
cardeliveryschedulefield.finitefield.org
gubal-library.com
api.gwjgames.com
www.hongthong.com
lowermorden.horseriding.app
www.ianjali.com
www.inblockdesign.com
induro.io
isosolutionbd.com
joepvandepol.nl
www.kiritchoukc.com
lab-keiba.com
www.leegrambush.com
ikoverk-lounge-dev.logicwind.co
pagar.magalu.com.br
www.mangaxmanga.com
mapa.marketindustrial.com.ar
wingarc.meetventures.com
meltemiblu.com
nabla.tokyo
superstar.stage.neoufitness.com
www.outdoorcoders.com
porsche.oyez.fr
www.pahlischhomes.com
www.pakhms.com
auth.pollinator.coop
porinkiinteistojakunnossapito.fi
app.programasucre.com
pussy.nyc
www.putyourphoneawayday.com
www.pysel.com.co
razvanmar.in
hbsfacil.removis.jp
demo.rflex.io
archivio.rifondazione.app
roameeo.com
www.rudracrackers.com
saluteemergencias.com.br
evdrivers.sienarsystemsmx.com
firebase-backend-dev.silentbeacon.com
aspira401k.solerabank.com
cotizador.solquima.com
www.speednoisemovement.com
starwarstheory.com
qasign.studiossolution.com
www.sunbirdcamps.com
api.superfrete.com
glasaj.supertalent.hr
cron.svev.dev
www.talkinghellokitty.com
lms.teenycoders.com
www.tehillimteam.com
www.thewebarchitect.dev
timetalk.one
tncaa.net
link.tpark.io
enroll-dev.traktrok.com
pagina.vendaslandingpage.com
app-staging.villadrop.com
scorm-app.vindicloud.com
virtualix.co.uk
vorplive.com
photo.vyeron.com
www.wavefit.es
dx.wearsafe.com
dinespire.werner.codes
staffing.wewonder.com.au
whitevillasamui.com
xlending.cc
terms-of-use.xtoearnings.com
mafia.zhebil.com
checkout-goerli.zksync.io
Other domains in certificate