Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.eduardonp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 12, 2026
Valid Until
April 12, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:31:25:95:F6:19:FB:1A:88:25:C0:5A:8C:46:13:F3:06:AC:E9:04:8F:64:13:99:9D:FE:85:8E:9F:0C:11:4E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
yukin01.dev
achordlessons.com
achremach.com
agentstech.co
mawaqit.aicpsweden.se
www.alcodio.com
stg-app.anytag.tech
perfilplus.app.br
university.atlascode.academy
atstk.com
bucket-combine.bce.dev
beltranypedreros.cl
betax.in
book.birdy.life
brandico.in
poppyboxpayments.britishlegion.org.uk
promo.oxeye.co.in
qavs.goautomate.com.my
www.probaby.com.my
www.leaguer.com.tw
datasquared.us
digmixer.com
dolphain.ai
dymka.me
edtvmarketplace.com
www.eduardonp.com
estaciones.elcocrc.com
mathsapp.emilyandholly.ie
encf.do
www.etiennelebel.com
ezyinvestement.com
filelasso.ca
hangseng.fundman.ai
www.fyne.games
geno-event.de
getwallet.cards
hangsengmaster.com
www.honeybeechildcare.ca
hyec.me
www.hyperact.io
hypersonic.coach
jgka.in
kamp.red
kangacoach.de
www.app.kendisc.com
antidrone.kro.kr
kurze-durststrecke.de
lap-laser-cancer.com
lindaturnercenter.com
web.maestrasuite.com
www.magpiemarket.kr
marvinoeben.com
maryamnisa.site
www.meetcoders.info
www.melange.ltd
membla.com
miawmomo.com
www.milestonemaps.org
www.mindplus.run
www.monmon.com.br
mqasim.uk
www.neatapps.net
designlab.net.pl
nikhilnanda.com
nusantaracapit.al
olomed.net
owncart.shop
admin.requests.partyrescue.ca
app.powerli.net
app.qrnet.me
pwa.randonneursbrasil.org
www.saininternet.in
sandunsudara.live
scaleoftheday.ch
www.se-former.app
sivaganga.selvitravels.in
mumbai.servicemall.in
busapp.shankaradarsh.in
skycricketvijayawada.com
smawri.de
www.sneltest.nl
www.socialcpu.com
platform.spacer.sk
streat-lab.com
www.sunrising.tech
academy.teachblox.io
partners.techkrikrioasis.com.au
agentic-admin.mlinfra.thinkdeeply.com
www.tiendalasmotos.com
timetotalktherapy.co.uk
torixa.io
maintenance.trills.io
www.vmcarlounge.com
vurbis.market
directed-attested-weblib.labs.websheet.io
www.wellnesspodhajska.sk
www.jt.withorca.com
yesmktg.net
www.zacpez.com
www.zkcheesecake.com
Other domains in certificate