Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.chatui.studio
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A4:B0:80:07:0B:89:C1:70:30:33:FC:2E:A6:21:01:D9:48:F9:BA:CC:BC:65:F7:03:90:D1:3E:0A:10:B9:54:F3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
2003.bloggi.es
2mindspartners.com
www.2mindspartners.com
aetherium.ch
www.afrobeats.com.br
aftad.org
auth.ai-scenario.nl
ai1979.ch
staging.ai1979.ch
app-reservas.akhcompanyia.online
antagon.ai
www.antagon.ai
app.arvfinplanner.com.mx
barisacademy.com
m2hkost.batamx.co
apps.blakshop.com
site.blanc-karte.jp
www.blue-cell.net
staging.chatui.studio
childwelfaretrust.ngo
mrsenterprises.co.in
icscollege.co.ke
www.icscollege.co.ke
colyf.in
revitalwellness.com.my
www.revitalwellness.com.my
sohow.com.sg
www.kerzz.com.tr
www.kerzzpos.com.tr
www.connorbernard.dev
app.dev.crmfacil.digital
www.cryptokeys.tech
develop.share.food.cururucu.jp
didimemlak.ai
eisstockmunich.de
ekic.im
shop.eugenplate-werkzeugbau.de
meet.experify.io
a0hd.foodle.su
foundercontemplator.com
garnierfinance.com.br
console.geeride.io
gojohub.com
guestmotors.in
hanaromotors.com
auth.iris360.dev
dev.ittahad.site
jerrysports.in
kodfixer.com
koroutoai.com
tki.ksug.ai
leanfactor.eu
lintrai.com
lolrp.site
app.londonbuspal.co.uk
www.wishwave.luova-gifting.com
kamlapark.mahsua.com
www.masser.com.ar
masterofsecuritysystem.com
www.masterofsecuritysystem.com
beforeandafter.matsuchiyo.com
cam.memoriesx.com
www.mycv.mezapps.com
www.microlabs.dev
loja.mrtombox.com
waitlist.myfoodex.com
www.waitlist.myfoodex.com
trainer.netskill.com
newuniverse.online
nioloans.in
www.nioloans.in
on-electric.digital
app.tinautismo.org.mx
playdeck.app
neuro-gopaque.pp.ua
mastermind.printwag.com
www.profumeriagenovese.it
programmingastorm.xyz
punyafashion.com
rallydataperformance.xyz
www.recadin.com.br
www.rgbassurance.com.au
auth.rixxymc.fun
www.sami-stroi.ru
rohit.sanjaygangwar.dev
shivajiraodeshmukhagri.org
app.sitaara.club
skm.works
stillsisrael.com
www.suzy-and-luke.co.uk
tdssilver.com
www.terrifix.net
www.thechartmaster.in
thefamilywins.com
old.uiexpertin.com
v2tunray.org
emetteur.demo.vigie-app.fr
www.kerzzpos.web.tr
qr-code.zamakan.om
www.uatextension.zynix.ai
Other domains in certificate