Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=troveapps.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 31, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:9F:B7:61:F2:BD:10:B0:BF:73:54:B1:7C:17:C8:EF:F1:20:C1:88:FD:B2:3D:F5:91:93:F3:48:7B:D2:AA:6E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
agm-vote.com
stg-admin.abctalkies.in
stg-agent.abctalkies.in
url.actionlife.com
adamszalma.com
adtify.net
advaita-tech.com
aeodonto.com
aftersavevideo.com
aidenarun.com
aiscanner.cl
jobs.aldridge.app
allnewretrosnake.com
cmstest.staging.console.appabrik.jp
beingseller.com
birukmengistu.com
www.blackboxfitnessclub.mu
booksale.app
www.bootjack.run
www.bridge-it.cz
www.bueccs.in
businesssupportpartners.com
demo.cbrand.me
chamelioness.com
creatives.chartboost.com
www.chr1s.io
civol.ai
forms.clivi.com.mx
cms.adreamtravel.co.th
ecom-signodeindia.commerceq.com
vanrental-directbooking-staging.commitsmart.com
loyra.configuradordeco.com
bancosemear.creditoexpress.com.br
csmc.md
davobarrera.dev
www.devs.tt
admin.console.stag.for.dinii.jp
www.domingo-app.com
www.droptaxipondicherry.com
charla-git.eximiait.com.ar
timeline.fishtank.cloud
dental2.hexas.co.uk
hexee.app
hoa.do
www.hundredthousandloaves.com
sl.iaccess.se
dashboard.ideabinanegara.my
woma.immodigi.app
security.jaspero.co
www.jessicakhope.com
web.kelimator.app
www.k.kharlouskaya.com
legend-universe.com
www.lifencolor.com
www.listednearme.com
lovu.page
menubase.io
www.mistability.com
mononymous.art
thoothukudi.mukunddroptaxi.com
www.musibohemia.com
nashabandimaharajya.org
proclaimwsdlcheck.netapi.co.uk
accounts.netpark.com.br
staging-admin.omnicurenow.com
app.educere.org.br
my.panorama.fit
pathquestmarketing.com
bttest.piticommerce.com
pixelcat.jp
www.plusbo.at
app.poky.gg
referralbooking.qderm.ca
qrecontracting.com
api.realresponse.io
www.rebatemanagementsolutions.co.za
www.restaurantesrustic.com
demo.staging.roboflow.com
public.staging.roboflow.com
referrals.staging.roboflow.com
www.shoprocketapp.com
dev.simsouls.com
dev-landing.stempl-app.de
bodavillatororeyes.swanmoments.net
www.synea.dev
link.templewallet.com
dev.the3dapp.com
www.themontessoricentre.com
tillswitch2.space
troveapps.co.uk
uvini.me
callbot.vaihde.io
www.vireum.fi
admin.volksbolsa.com.br
www.waitdone.com
www.whoshigh.app
fun.wsxnyc.org
app.yenisirketkur.com
wolfapp.zaxnet.it
admin.zense.online
Other domains in certificate