Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dartsforall-development-757cc.dartslive.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 03, 2026
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A7:45:14:CC:FE:BC:F9:49:2F:92:C2:2D:F5:36:A5:09:C9:C2:68:82:26:6C:B0:8C:86:93:DC:05:70:D9:C9:47
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
adrxx.com
www.23rg.fr
eblast.4patientcare.info
aamirvirani.com
afinador-restauracion-pianos.com
aidcingenieros.com
aimzegypt.com
www.alexey.co.uk
www.alnst.cyou
amateurfutbol.com
annecymeteo.fr
appartiene.org
www.appartiene.org
admin.asp.development.axalize.vn
b3care.nl
beminson.com
2025-african-champs.canoepolo.capetown
app.cardapp.me
conference2025.casval.org
chisambofarms.com
clickworld.site
seoulcharmkids.co.kr
tuchonga.co.zm
hr.codegene.io
dartsforall-development-757cc.dartslive.com
dzdidactial.online
dons.eemt.fr
ca.fallon.io
dev.faltstein.de
fashionfindrs.com
quote.flitter.fr
frutos-do-caminho.com.br
qa.gestio.school
private.giovanniliboni.it
haribusservice.in
haus-und-sicherheit.org
hebamme-karlsbad.de
hire-co.com
staging.hypernote.io
smartcharge.it.com
jakubkuzel.com
kuzzboost.shop
laporrita.es
partner.leadport.app
www.limebe.com
litlab.live
manmeet.xyz
mansa-k.com
mansa-k.fr
maquinadosytecnologiasvams.com
hostings.metalogics.io
stageapp.minkobmand.dk
mrgn.org
apps.napandup.com
nappymap.co.uk
app.nexposhk.com
nextayah.com
nomoredumb.site
novagestaosc.com.br
app.oddysia.com
blog.ofoghlu.net
h5.okeysohbetplay.com
qa.kairos.omnicon.co
blog.one-sec.app
pb-otv.stage.openkind.me
www.painsledsupport.com
parklab.app
www.petmedscompare.com
pocketsidur.app
app.dev.reach4help.org
www.rockhopper.capital
www.saag.io
app.saturnwave.com
www.singtecs.com
smartkeyplatform.com
www.spsdhaurang.in
stacktower.shop
stpwtch.nl
studiobubbletea.com
t-hunter.co.uk
technity.dev
terrencewhaley.com
thematrix.company
isomix-3d.acc.thenextapp.dev
www.logicgame.tickx.me
townies-rts.com
mfw.tresastronautas.com
trinze.com
audio-book.unicorn-clinic.com
www.urgentshifts.com
veinublooddraw.com
www.veritechengineeringservices.com
bus.virtualdata.com.br
chat.vmacri.com
wayanadanhuts.com
www.whiskeykalendern.se
www.worktrackingapp.com
admin.xpertso.com
zestwell.org
zombie.sh
Other domains in certificate