Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.medoc.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 21, 2026
Valid Until
April 21, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F7:16:B3:41:81:67:29:25:6B:39:D5:67:96:1C:EC:C9:C6:9A:7B:E4:83:D3:72:00:87:A6:59:BE:30:ED:95:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
zombiecleanupservice.com
www.10zebra.dev
admin.6dbytes.com
vpn.7bitpartners.com
web.9lessons.info
abenzaggagh.com
www.afetok.com
aftercrush.com
dao.agio.app
airloomapp.com
anascar.rentals
anayale.es
www.aptilink.io
hillsea.ballycastle-accommodation.com
dev-bookings.cabinzo.com
gameworld-uat-backoffice.cbdata.sk
wallet.payngo.co.il
track.intelli14.co.in
dev.app.corvusdrones.com
offers.craftjerkyco.com
www.creativedecoration.in
dash.dev.crilabs.net
app.cruxlarp.com
csbsjurecord.com
www.csiresearch.co.uk
depara.com.mx
guitarfx.deplike.com
pothole-detector.dev-sunil.com
www.dorotheedesormeau.com
enklast.nu
entbiowithrey.site
rider.fnbees.com
host.fomosumos.com
anniversary.foxcroft.dev
proapi-dev.fremby.no
galileodynamics.com
goto.internal.gather.app
help.getsheetsync.com
green-owl-technology.com
harmonizer.dating
highvolume.us
presspets.hypervr.games
www.infographicai.net
www.jannik-loeffler.com
my.kahu.work
www.kuogary.com
auth.langopio.com
lepin.co.za
lupinbylucy.co.uk
www.madadcare.com
www.medoc.in
meudeputado.mobi
stripe.mindburp.se
wealth.mononz.com
ncmi.ae
sistema.neowifi.mx
www.newton.best
www.notebl.com
www.ochoavckesettlement.com
www.oikattes.com
onegreenroom.com
www.orkiv.com
pektas.com
myshop.plantix.biz
www.printkart.store
chess.psimyn.com
www.rafaskoberg.com
one.redlabs.de
join.reskillamericans.org
www.riveni.in
rohanjsh.dev
clg.rokhub.shop
romanianadventures.com
ropesout.com
saikiranjella.com
scarborough.me
www.schoonheidsinstituutlaurence.be
sgklass.com
savu-sfg-app.speakylink.com
plates.spencerlyon.com
journal.sreerams.in
dk.tapchats.com
customer.singlafootwear.techroh.com
thebutler.ai
edu.thinkair.co.uk
money.thomasbutler.com
futbology.tranchant.dev
tunguyen.dev
qr.ueue.au
auditorio.vendacolaborador.com.br
veritedatascience.com
www.vocalride.com
warmandfuzzi.com
wofferz.com
xdreamvendas.com.br
www.yigitgrp.com
www.yogionthebike.com
www.yovstudio.com
register.zlipp.in
certifications.zymdev.com
Other domains in certificate