Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.flowerlike.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 29, 2025
Valid Until
March 29, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:D9:FA:A5:00:8C:98:40:13:20:A3:7A:2A:D3:82:0D:FF:9A:FD:DB:B7:D9:2B:4D:3E:76:02:5B:DF:7E:36:B4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
abcar.ge
lowes-kitchen-visualizer.3dcloud.io
www.7sachen-freiburg.de
www.abdullahaldeen.dev
promo.appmajik.com
www.atomarchitect.com
development.bestatdigital.com
beta.blogletter.cz
www.boatbook.org
boxofic.com
turnkey-dev.boxwood.dev
closepixels.com
www.codeme.club
stories.comobi.io
lime.consteelsoftware.com
cssgo.xyz
cygnustechhub.com
dazzlemenu.com
elevatingfacts.com
entremind.cl
esgie.com
go1.flirtplan.net
www.flowerlike.app
frelypay.com
portal.futuralabs.io
www.gilmon.co
go-cabby.com
gomi.tech
dev-app.hairmake-theater.com
haqtech.net
open.hookle.net
hoto.dev
tnminh04.id.vn
www.ignitechannel.org
dashboard.inkryptus.com
jazzsaltlake.com
joshfrank.com
blog.kaceres.dev
koseph.top
gbow.kreateiq.com
webfleet-staging.ldsoftware.it
mtfb-prod.da.letsdive.io
letter.lightone.dev
maloneya.com
front-denuncias.manon.cl
mchaupham.com
meru.tools
michaelkastl.com
micompass.co.jp
numerology-map.mihi.dev
force-us-app.moj.io
www.mondadorisestrilevante.it
mow-dev.website
www.newengineeringworks.in
www.nfalmaxmais.com.br
nvwrestling.org
odysseykankakee.com
www.panchwati.shop
kaizen-profile-dev5.pbcd.net
pho3.de
plastics-designer.com
positivemovement.co.uk
new.printjobprocessing.com
www.ramperumalphotography.in
rehearsal-companion.com
renthero.io
www.reutilizable.top
www.rightinsurance.info
www.aviva.robertolegorreta.com
robertoo.st
www.rushilshah.dev
sarias.dev
www.septembersecond.nl
www.seventhheavenwater.com
app.shipwithjulz.com
skatecityng.com
short.smartpayvn.com
edithybrid.smass-solutions.in
smilecaredentalclinics.in
welcometothejungle40party.swanmoments.net
sykango.com
techsolid.io
minigolfking.games.tetherstudios.com
tetrixgauss.com
thatcomeup.io
thetwinsbrewingcompany.com
www.timhilliard.com
l.titandistance.com
a.tjbsuperyachts.com
developer.toddkrupa.com
www.tolapp.fi
vip.trackdmusic.com
trovilo.co
ts-terrace-laundry.com
www.tsvwood.com
usmanshahid.com
fonk-orders.waiterpro.com
wastedtalent.rocks
meinrestaurant.wisag.de
xmas-kiseki.jp
Other domains in certificate