Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.apeaceofmindpc.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:FC:89:6A:4C:17:6C:E1:64:00:F1:1F:AF:9F:5F:46:D0:13:A4:0E:54:C3:F5:15:1B:99:E6:11:FE:46:3D:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
zgimage.net
www.adlerbuxta.ru
www.andyfrantz.com
www.anindianaffairarmidale.com
www.apeaceofmindpc.com
aptik.nl
www.ballebaaz.com
www.nicknamesmlb.baseball-connections.com
bingotown.fun
team-manager.dev.blushco.io
busomeiq.com
captin-mohamed.com
www.carolingcompanion.com
sbs.cdlbox.com.br
app.certifique.es
signup.clonebrews.com
www.dhiyafoods.co.in
www.akimia.com.tw
compbiotech.com
link.crepay.com
dev.admin.currvit.com
davidhairshop.com
dazkon.com
dhammagong.org
digividbio.com
dragonaingatlanok.hu
www.dstech.asia
www.elmro.se
beta.emcedev.link
www.eudynamystech.in
fakejiujitsu.com
beta.finnyapp.com
www.flutterlove.nl
frontend.focus-web-staging.com
frostyfriendsclub.io
timeline.fylo.com
www.gdprcompliance.dk
getsoovi.com
getvfeed.com
healthyway.fitness
skruf.holdirdeinengewinn.com
onboarding-staging.homebox.co.uk
app.ikrok.net
inmosuppliers.com
www.invr.world
juanmigonzalez.dev
moderacao.juntosnaredacao.com.br
kakomon-training.com
kerk-enzo.nl
kfz-gutachten-kaplan.de
app.klubbappen.se
kollectyve.network
www.kpsgallery.com
www.lehotzky.com
marianamarcato.com.br
app.dev.mariko.se
melvinmoran.com
www.mobileflavour.com
admin.movel.no
pharma.ness.plus
admin.newsum.in
faculty.oakwoodfriends.org
people.partners
beta.pixeltreat.com
dev-staging.pneuma.care
app.pricetiger.nl
www.progressovertimesettlement.com
www.qultah.com
rtredes.com.br
www.schoolrebound.com
seerde.net
admin.sellingcommunity.com
manage.showandco.it
smoothe.in
softharbour.io
family.spiders.fun
www.spotonfintech.in
stardewna.me
www.streetjokers.gr
intraspace.suitefeedback.com
superfluid.io
www.talentmindsllc.com
kulukorvaus.tammerposti.fi
abctest.testowaplatforma123.net
test.texasvotertracker.com
boho.thediners.in
artist.thefurrymarketplace.com
admin.tic-tac-trivia.com
time4pet.com.br
tracking.education
support-test.tractivity.se
lp.tradersync.in
utahfishtaxidermy.com
www.vickychatzipetrou.gr
vuyap.com
points.williecubed.me
www.wilsondom.com
thisonetest.worky.mx
www.wydemarket.com.br
app.zzshare.com
Other domains in certificate