Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=idoki.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 27, 2025
Valid Until
January 25, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9C:76:3C:B5:08:BD:2E:09:CC:B9:B2:51:1D:F6:61:77:07:16:1F:45:FB:4A:F0:57:3B:DF:5B:56:9F:2A:71:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.driverguide.is
100porcentodistinto.pt
magicfuelgames.12traits.com
www.aadhantech.in
www.aiangels.art
aimars.app
www.andrew92.site
krishnagiri.aravindtravels.in
pamacloud.auxswot.com
app.azure-vr.com
platform.bio-circle.be
push.bony.space
brunaakemi.com
www.btnlending.com
carrickemmets.ie
wikiantiderechos.conocimientoabierto.org
www.corona-no-baka.com
app.crein.net
century.teaser-demo.dbox.com
www.dhimasprajaya.com
v1.dipanjanpanja.in
dkvietnam.com
pesquisa.doctorclin.com.br
dogmatch.me
www.dolomite.io
moj.elovec.si
app.engineersinsight.co.uk
ethicalmind.tech
eusoumabel.com
pay.ezfinanz.com
console.genvision.it
gitstatistics.com
crm.go-360.nl
clinica.golden.services
partners.golujo.com
info.heathmonteastpreschool.org.au
chatbot.henryapi.ai
www.holiapp.live
www.hy-clear.com
idoki.co.uk
ifixitapps.co.uk
live.indiajackson.co.uk
stage.apps.inmotionhosting.com
jgehmlich.de
digitalsurvey.landsandlands.com
pwa-stage.leseschlau-app.ch
app.livingledger.com
www.loftly.app
uikit.main-echo.de
www.masch-wedel.de
www.messageofislam.org
frfirebase-c3.moboreader.net
www.moodwriter.com
app.mycax.com.br
alice.nextknowledge.ca
spacelink.nextlogix.vn
osaka-bound.com
links.pawty.my
owguessr.pegas.is
phaneeshmurthy.com
playlitmusic.com
progotipotro.com
api.pwapilipinas.org
quickfix.pk
www.chris.reedit.au
lp.renansujii.com.br
www.resvi.app
refer.rewardcards.app
app.rkvisionhomes.de
www.roebiduedingen.ch
rubrasonic.com
www.rwors.com
saffronzen.me
auth.sameday.ai
plymouth.scouthub.app
smoothie-slide.com
www.snark.app
spellbinder.app
test2-malibu-world.spree.se
mrntrivia.sqwadhq.com
umair.techna.pk
www.thendos.online
thewolfofmarketing.de
tortilleriachapa.com
plus.ultipure.co.za
www.umi2u.com
lvlumber.uniformlab.net
urabereiji.com
dev.morador.usucampeao.com.br
agent.dev.tk.videolink.app
visualmind.io
app.vodafone.hu
www.waltex.waw.pl
www.web2biz.in
weeklytasker.app
wickedcampers.co.nz
dev.winresponse.io
prodclone.wrench.ai
xpertfinance.in
auth.yakyak.cloud
Other domains in certificate