Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=travelsphere-sdk.joinsherpa.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 27, 2025
Valid Until
January 25, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:36:F6:6E:F8:6A:92:A3:92:C2:2E:DA:5D:94:77:85:23:E4:7F:34:1A:77:28:81:7A:4A:0D:4B:7F:1E:B3:6A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aftamayo3.com
random.actinarium.com
adidartechnologies.com
www.adminjs.co
ago-construction.com
staging.website-builder.album.boutique
staging.alinocam.com
www.altman.ai
aluminiumwindowswarehouse.com
events.appquick.co
arshwindenuevlal.com
en.autoy.autecla.com.br
mta-sts.avaitrust.com
bamboozledsoftware.co.uk
trial.bigdreamboard.com
www.birdhabits.com
www.biswanathsahoo.com
bonnagro.com
cajaguapa.es
calisthenicschicago.com
changekraft.de
cindyxwang.com
citex.tech
admin.cocoagh.com
www.drgmed.com.na
go-test.cosmicrewards.com
myportfolio.cschaepper.ch
www.curipha.com
deboragaburri.com.br
www.eaglenetwork.co.jp
eb-europe.de
test.engineersinsight.co.uk
fabricodes.com
link.feelsart.ai
app.dev.fejron.com
www.fivebitesbakingcompany.com
www.floriangrasser.fr
forro.se
frenlydogs.com
gogdl.com
app.stage.gomo.world
harshjoshi.dev
www.hellsyes.com
jared-brown.me
travelsphere-sdk.joinsherpa.io
www.jomarhan.dev
jtea.in
kds-sandbox.klover.app
portal.kriyaaqua.com
lambdaedge.co
localfrenchpolisher.co.uk
dev.lucky-strike.cash
mayn.games
www.sw1.template.merdekatech.com
www.methodsdevlab.org
miimo.ai
legal.mymoons.mx
n42.company
www.ourcardgame.ca
outerview.xyz
dynamiclink.passbuy.com
peterperezjr.com
www.pluma.cloud
www.qranoko.jp
app.rad.ca
ranjan-singh.in
release-manager.renoworks.app
satyabogados.com
www.scapegroat.xyz
partner.scholarly.africa
coyotes.seasonshare.com
setupai.ca
smartinspect.ai
link.soart.ai
www.spinndrink.com
spoxie.com
squaregofilms.com
www.sushikai.es
mrh.synctalk.us
qms.taigmaccarthy.com
tattoofinder.es
te-reclutamos.com
www.televinduadmin.app
link.tetherre.com
experts.toolspace.se
auth.tracksy.ai
join.tradytech.com
www.trendtube.world
www.tsamakos.com
signup.vidtao.com
www.villabaline.com
chatbots-staging.vizury.com
ecoupons.wavecxm.com
insights.wayspa.com
willjguo.com
video.workshop-live.com
worldhousingfair.com
zenchimpify.com
magic.zero-x.net
zydertech.com
Other domains in certificate