Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.re-mind.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 21, 2025
Valid Until
January 19, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:87:3A:77:58:C2:D2:2E:57:9C:D4:9E:85:46:6B:C3:07:66:61:6A:A3:95:70:D1:A2:11:F0:95:EC:93:DE:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.bookinggood.net
dev.1bpluschool.com
lakeshore-roomplanner-test.3dcloud.io
aitabmanager.com
www.alquiler-de-proyectores.com
sanki.anbi-reception.jp
appenginemigrations.com
appscanfly.com
gahikers.ardavansassani.com
www.arpitanand.com
app.aspire.tv
www.avintas.ch
aztecasys.com.mx
app.bahadirakin.com
login.spark.blaze.today
transportschwechat.booknito.io
booksplusapp.com
www.bricksgta.ca
budgetina.org
calendar-share.com
clip-mask.com
staging.clip-mask.com
www.clip-mask.com
www.coachx.live
app.coccoc.com
codeame.com
snowroom.codebravo.tech
www.codelov.com
cole.la
hngbrothersfrozenfood.com.my
compound-timer.com
app.confinity.ai
app.contactify.ai
cp-kong.com
www.crunchcourier.ca
www.ctrlxv.com
cuidarte.co
www.arbeitsbericht.dedyn.io
portal.dhanucrackers.in
diginomi.app
www.dogyeong.me
preapplinks.dominospizza.es
links.dugriapp.com
www.beta.flachip.com
staging.flowup.cz
app-dev.football-live-score.com
gomapay.xyz
greenpickr.com
sbh.hbco.net
home.hossameldeen.com
teams.hyoj.in
creative-tensions.ideo.com
saigonsportsclubmt.impactwrap.com
inovaprocess.app
www.ironpdf.com
jeffandsteph.co
kyotabi.dev
lacasamejiabarrera.com
universidadveana.lernit.app
office.blr1.locobear.com
bin-fe-test.logexa.com
lxrose.org
marcioaraujocorretor.com.br
www.marcioaraujocorretor.com.br
matildahaneling.se
link.mentemo.com
www.mini-budget.com
mrynot.com
www.mypcand.me
netperf.tools
www.nivec.ltd
www.nivinu.com
www.noben.org
perc.norththird.io
nsce.fr
production.on3.ai
plutform.com
live.projet-prism.fr
wiki.projet-prism.fr
matrix.protaxplus.com
www.re-mind.app
www.rydesafe.net
www.savankanabar.com
shardings.com
app.sniip-uat.com
www.solosquad.in
www.souple.app
southsideminimart.com
www.stakingsteuern.de
input.sumai-entry.app
www.tddesign4x4.com.au
telstonandmereworth.cc
tulukasalta.turnosweb.app
tulukavillaurquiza.turnosweb.app
vidmed.site
vie.digital
vieclampro.com
auth.wedew.id
dev.wordseveryday.net
link.world-museum.org
Other domains in certificate