Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=spoutsoftware.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
33:3D:53:DA:86:65:58:0B:5A:1B:23:E6:4E:4C:A7:26:E4:17:8F:3A:D0:5E:BD:65:FC:1A:2C:90:B4:20:81:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
3d-model-viewer.marekjankovic.eu
www.abhirabizztech.in
acervoamaranto.com.br
ext.actinius.com
dsv.agendy.com.br
amanai.in
artresan.pl
assutefpg.com.br
aurohomes.in
sufficientreason.bookshelf.press
admins.borkuafrica.com
recipe.library.brewfather.app
budgethub.ai
bugsbunny.ch
coach.burncal.fit
camd.fun
merenpoolclub.clau.io
m.cleanbox.co.il
www.swiftmedi.co.in
www.crosscover.app
daystack.app
app-dev.deeddelivery.com
www.deekuinsights.com
www.divyan5h.dev
admin.easysignage.app
edgebyte.in
www.eis.gg
airhockey.nerf.emallstudio.com
a0hc.foodle.su
neldata.freeway.com.ar
gamegou.com
gaydalajara.com
www.gazelledriver.com
whiteboard.giger.dev
godrejflatsbangalore.com
www.godrejflatsbangalore.com
www.grouplist.app
web.guestservice.net
aqar.inmogr.com
app.insig.ca
www.iryoenfitur2025.com
joinpie.app
keigo.io
lavaderopalermosoho.com.ar
www.lavelle.io
osu.lost-is.sexy
www.louiseetjohn.fr
loupak.com.br
bestdeals.masterseufuturo.club
plastics.mayamd.ai
lptour.mbility.app
app.mento.jp
meulora.ca
nidonombres.com
okke.okenavi.app
link.omegatv.ua
slcschools.opendata.report
paintingworks.in
hallitus.jkl.pannarit.fi
penkeyconcierge.peninsula.com
www.pictoricotextil.com
www.plastics-designer.com
play2d.com
www.preppinbee.com
www.psychosoftwaresolutions.com
visualdeliverydashboard.computerservice.re.it
recordatorio.com.br
app.referralsbooster.com
firestore-editor.rivers-style.com
track.rxoconnectperf.rxo.com
www.sangserene-house.com
shirataiicarbonsprivatelimited.com
shootprice.in
firebase.skinvoyance.com
spoutsoftware.com
wmushuffle.sqwadhq.com
wmushuffleadmin.sqwadhq.com
stefangeorgescu.com
www.stempl-app.de
www.strasnicinnovative.com
systheba-albrecht.de
telionhealth.com
www.telionhealth.com
www.theideasplanet.com
receipt-preprod.tiime.app
timo.engineer
traygpt.com
trevia.app
ultimateandco.com
unavictimade.com
unfurl-connect.com
link.uvida.app
virtualunion.net
app.vyctr.com
support.wataboda.com
uk.weather-fit.com
wenyuar.com
wishesai.com
www.wwvacations.com
releasenotes.zithera.com.au
Other domains in certificate