Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.salivapro.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CA:24:EB:39:1C:64:2D:B7:D0:FB:46:52:17:99:2C:E4:94:71:09:E6:0F:57:51:86:FC:F0:23:E3:FD:37:02:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
99centsclassaction.com
330softworks.com
staging-portal.3diq.com
www.6alvez.com
aura.abiinteriors.co.nz
www.adrianmn.com
aicloudconsult.com
www.andantesys.com
antiguadestileriapulco.com
ashokabearings.com
www.assetequityscan.com
balenciaga-3xl-tryon.atelar.com
www.bananacup.be
www.bestchoicegc.com
brainbytellc.com
www.bumpin.net
buzly.co
bytecodev.com
www.canalamplifica.com
celerbay.com
www.chariotagro.com
chronologist.com
clickforge.io
tgs2022.cluster.mu
www.cognitlan.org
go.crucible.wtf
iq.dashly.net
costallc-5.dev-ltl-xpo.com
diport.online
droptaxioneway.co
www.elitetenniscenter.cl
emporiumrelojeria.com
my.enkiduglobal.org
extraklean.com
www.extraklean.com
falcon-ride.com
mta-sts.fastai.dev
app.fotobots.com
gastromarypena.com
euler.genepeer.com
jarvis.getjuly.com
herculesfisk.com
www.customer.itsltd.online
josechirinos.dev
register.karavan.vn
sf2.ksug.ai
laydenhalcomb.dev
www.levenup.com
www.admin.localguru.co
ltiaas.com
app.lynky.io
www.maintain.me
dev.malwoden.com
www.markrad.com
maxibebitos.com
minitodos.app
misutechnology.com
www.morin.lk
non-prod.myta.la
nadirdev.com
www.namba.design
payment-urllink.smt.docomo.ne.jp
www.noaflojemos.com.ar
www.novabizz.com
novadeca.com
portal.opengrid.xyz
parikshanotes.com
polipoli-gov.com
staging-members.poppinshealth.com
probabilidades-esportivas.com.br
psichiatriatranspersonale.it
pynqly.com
q.country
pay.rachitkhurana.tech
raedatoui.com
rajputlaw.com
www.ramilveiculos.com.br
apollo.renoster.co
apex.rowrock.com
www.salivapro.com
scholaraim.com
link.smile-direct.com
polling.snowcorp.org
snugshield.com
soundwaveiq.com
www.soundwaveiq.com
stickysrus.com
husafell.dev.stokkur.is
sublim3.xyz
beta.coaches.superflyathletes.com
www.traveld.app
store.trustware.my
tubelooper.io
ubunifu.co
www.videopaleis.nl
app.waladigital.io
walletwall.xyz
www.walletwall.xyz
weekday.network
yangjoo.kr
Other domains in certificate