Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=webapp.qurio.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
73:F2:0E:2D:37:63:F6:F6:4F:03:0B:A8:1E:34:51:A6:A6:0E:8E:A8:69:BB:77:0B:83:C7:5F:AC:94:61:71:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
5days-max.gpi-code.io
robotogames.12traits.com
valida.abigeapp.com.br
nps.activate.cz
links-concetti.acty.com
dev.adme.se
afekt-psychoterapia.pl
link.ankpal.com
appyx.io
anywhere.atco.com
app.aurorabysigholm.com
auth.staging.bankhooks.com
beautylaseril.com
oap2021.beezsocialerp.com
app.beyondinflammation.com
www.bhuvi-tawari.org
bikecrm.app
girafintastica.bracelit.es
laantigua.bracelit.es
brotherhood.top
bzystudios.com
gcp-us-east1-05.dev.app.carto.com
namer.champayne.net
base.cloutlayer.com
clubkaiku.com
coedify.com
cohmoe.com
onebox2-dev.oneclass.com.tw
comunicacidadao.com.br
app.contingenton.com
cortezblack.com
crazyguava.com
www.curl-furubira.com
www.david-zohar.com
deadsink.com
denniseffmert.com
test89dl.digitalmonarchlimited.ng
doralsolutions.com
www.dphektiv.com
dsyphagiaresources.org
extecha.com.au
test.fairway.work
ei.app.fallnspring.com
filrolls.com
a0ab.foodle.su
fwatc.com
crm.gbc.pe
greetnsnap.com
dash.growve.tools
guillaume-deroy.com
huddleuplearning.com
icfr-meerecompany.com
circle.in.ua
car-blog.johnchristophersantos.com
link.juwelis.community
www.killara.co
www.lazikadigital.com
manager.liveconsult.io
admin.lookinggoodfurniture.com
demo.lorelabs.app
malcadams.co.uk
manasquare.com
mema.art
mmbntrade.com
www.mochaclass.com
web.mychronos.app
neveratech.com
www.npbesapipla.in
www.ntekavc.com.au
onestopmedia.se
hokutonoken.orpheo.cloud
swarm.osxperts.com
permanent-clipboard.app
pescaderiazapatajr.com
www.pizzeriatalia.com
api.pk4.tech
pkio.dk
postway.us
www.produvarovs.com
q4hacking.com
webapp.qurio.ai
xr-demo-01.r-devstudio.com
rotas.redepass.com
dispatch.dev.safetyinminutes.ca
www.saffronpatchphilly.com
saura.ai
seiwa-kensou.com
login.selectext.app
sharingsoil.com
sj6498.com
www.smartsafetydrop.com
annotations.devel.spaceknow.com
www.stvinternet.com.br
www.takkasmart.com
www.taylorchavezdev.com
navarro.tec.br
hangaarlab.vsight.io
vyre.africa
menu.weeks.com.co
app.ypkbali.org
Other domains in certificate