Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=iiotronics.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E4:CF:E0:A5:9F:04:B8:11:F8:BB:B0:91:FE:7B:F4:35:F1:13:15:8E:73:09:D6:37:B9:9B:F0:77:6E:D1:3C:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aanmelden.11yearsafter11.nl
www.0mar.me
dirtybit.12traits.com
www.3colorsinteractive.com
api.abocloud.io
pudukkottai.akdroptaxi.com
tirunelveli.akdroptaxi.com
tiruvarur.akdroptaxi.com
alquilerbarrosa.es
aniqhilman.sg
preprod.superadmin.askeko.fr
atelia-patrimoine.com
atsuta-camp.com
autographchecker.com
notes.babaaman.com
linoleum-35588.bambuser.com
www.bauunternehmen-wardenburg.de
bayhomeimprovements.co.za
fire.bimgames.com
www.bisapt.com
bluberypancakes.com
bx2group.com
www.catalina-wine-mixer.com
firstsafety.co.bw
dearmybaby.co.kr
www.colmena.site
www.commonloyalty.com
app.contract-dewatering.com
deepshikhagirlsintercolleges.com
denblauwentutter.be
applinks.dhan.co
dwhtest.com
ebti.co.uk
www.eugenectang.com
admin.field.pt
staging.flogged.io
a03r.foodle.su
fp-pulizie.it
www.frisb.nl
stage.apa.gaviti.com
demo.gemsotec.com
app.getlovebug.com
gngits.com
gototopay.com
www.grahamvo.io
beta.greenqms.com
www.gsfm-platform.com
sample.b.dev.hotekan.com
www.ict4dsa.com
verizon-staging.ideacloud.com
iiotronics.com
dev.viewer.easybox.immersiontools.com
ivanzim.com
app.iworkie.com
www.jachta-chorvatsko.cz
jefferyhatch.com
shiftingleft.jenniferwadella.com
jundyservices.com
kerlonkerlon.com
kovalsky.io
app.linqir.com
www.lukascech.cz
www.luxvet.lu
www.dev.app.lynxai.tech
mabdullahjs.com
marge.health
findoc.mistergreen.nl
www.multipalestras.com.br
www.mydietitianmama.gr
nguyenkevin.com
nofearbear.com
www.oligomaster.com
app.eduteca.org.br
erp.iibm.org.in
www.petastorm.com
www.plotartisan.com
votebedrock.pokefind.co
quattro.portfoliolink.co.za
promitheialink.com
prosolsolucoes.com.br
www.blendargout.order.pulp.eu
re-ynd.com
sergiorollan.com
app.staging.serviceo.me
sheet.supply
simuladoresstein.com
smaccoun.com
www.speek.im
tck-santa-anita-week.com
dev-app.tepintasks.com
thomasouvlatzidiko.gr
tivie.com.br
l.tmak.app
www.tomasz-polanski.it
app.tourplus.my
www.toutpresdesoi.fr
triggeredai.com.au
www.visque.me
vitalizebeautyco.com
zxxy.co.uk
Other domains in certificate