Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cafenook.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 06, 2026
Valid Until
April 06, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:DE:E8:12:26:0E:80:FE:6A:60:66:97:CE:99:B3:CC:80:56:07:CF:BD:BE:96:9A:6B:9A:02:7F:FF:A4:00:DB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
xtable.tv
www.6bees.co
idify.akshr.in
scanime.alenajam.dev
oc.alliedcodes.cloud
www.scan.alliedwellness.com
alloatech.com
www.alumnitter.com
api4ai.app
radar-publico.app.br
artefacts.gallery
letterboxed.asadillahunty.com
cdb.ashmil.me
augursim.ai
www.avanzasbpo.com
bensassoon.com
www.bigartwall.com
visual.cacko.net
cafenook.co.uk
calculatorpot.com
console.chaurasiaaditya.in
chuzeat.app
antipest.co.ke
comicboom.ai
conectadosapp.com
cotaremedio.com
croptube.app
www.cyalabogados.cl
www.designrvw.com
www.dhomecooked.com
dragomanager.com
app.edsidera.com
businessriver.eia.ie
app.electobot.info
www.featherdp.com
www.felipesantiago.dev
firemore.org
www.fongbi.com
roi.frdstr.com
www.goose-arch.ru
app.groupthing.xyz
happywork.dk
www.holdrightgames.com
hundredthousandloaves.com
trongtx2416627.id.vn
r4rfitness.impactwrap.com
erfa.inpraxi.de
karekit.org
www.keypr.ai
j.killersudoku.app
kylesworldmusic.com
www.livesnitch.com
www.mdmatkaofficial.com
www.megabrilho.com.br
www.milkdromeda.dev
movemypetng.com
admin.my-ci.app
naimdp.dev
neodynum.com
dash.netzontech.com
nirvanaaura.org
www.noshigroup.com
linka.omnicdp.com
admin.outgrow.co
patagoniaventures.net
www.petervoerman.com
link.player2app.com
www.preconcretoacsa.com
sl.proactiveforher.com
aletho.profuzzy.com.br
venuerush-admin.pujangupta.com
quizshowgame.com
rambirtech.com
portal.reactbh.org
www.reeducarapsique.com.br
reefalqamar.com
www.restauranteitumbiara.com.br
revalier.at
cdmx.rewards-dufry.com
www.rezaplus.com
estabelecimentos.rvpedidos.com.br
shopfigure.site
links.stephenashurst.com
www.sunrisemedlab.com
talentagilit.co.za
teamlifting.com
thenous.app
tk69.store
www.tlb.me
prototype.turborad.com
uzianova.com
news.venturecircle.io
www.vintageleaderboard.ca
b2b.visa2fly.com
werise.it
wine-and-spirits.de
www.x-report.com.br
zenhorace.dev
www.zeropointo.com
verify.zpooky.app
Other domains in certificate