Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=zeropointo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 03, 2025
Valid Until
February 01, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
09:31:FA:DE:55:34:D4:F9:74:7D:99:63:AC:BC:22:13:2E:80:4A:29:16:1F:DD:DF:E2:2E:EF:C1:98:D2:25:2C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
yljewelry.co
www.abl-law.com
contest-admin.aeondoyu.com
triax.alborea.app
editor.alerith.com
altekno.net
ammantraders.com
terms-ada.aranag.site
ashilramjee.com
www.attozoic.dev
partners.axxtas.com
www.bmk-strategies.com
bonologue.com
www.calcetinessanver.com
app.chapterme.co
www.publicnotice.co.ke
fztoktay.com.tr
conbaonhieungaydentrungthu.click
conbaonhieungaynuadentet.click
coolcatresort.com
crmevidence.xyz
www.crmevidence.xyz
crmvolanty.com
foundever.cuponclick.com.mx
my.define.ag
delhi70kitchen.com
www.dendigitalegris.dk
desensites.com
dieu.pl
droptaxiservices.in
training.life.ecflow.app
www.edgeflow.com
eko-zakatek.pl
elpwireless.it
eisneramper.esgplaybook.app
vuefire.esm.dev
verifyemail.everythingjournal.app
dev-static.referendum2021.campaigns.fire-emblem-heroes.com
cms.dev.foxbith.com
www.fpmutual.com
freitagabend.com
stg-maromaro.furuginme.com
www.globaltrendzmedia.com
one.gogogo.city
gruntech.ch
testpharmacy13579.healcard.com
hexobyte.com
idraulicofoligno.it
indiear.net
lector.intuitionstudio.co
www.joycechild.com
www.keplerenergy.org
admin.kompisapp.com
kote-kote.org
rewards.kyliescloset.com
www.labarricatepatitlan.com
evaluconsult.laforet-it.com
www.laga.com.ar
www.lamiglo.com
about.lancemock.com
legalmc.com.co
lichnghilegiotohungvuong.click
www.liuchenfeng.com
www.locapartner.com
brand.lunapath.ai
sonias.lupi.delivery
lyrically.fun
www.nandnandanarts.com
office110.info
www.ohsheit.com
onbelay.es
td.parkalot.io
app.photopal.app
playhighseas.com
www.primepainters.co.nz
www.realcappers.com
pricing.reeltoksocial.com
ua.serveqr.com
app.shipwithmm.com
app.skipres.com
auth.softion.io
dev-app.sparetime.travel
dev.spgplatform.com
www.sundaydavid.com
tajindiatourandtravel.com
tampabaycoders.com
www.tapcoder.com
tawnparent.com
telar.dev
admin.thecollectorseye.com
www.thecollectorseye.com
www.thestarcourier.com
tnhsict.click
le15.trustin.app
www.tryrebellion.com
tsuitate.info
italy.unifyapply.com
agent.qa.tk.videolink.app
ab86804-orders.waiterpro.com
zeropointo.com
Other domains in certificate