Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=appbuilder.softcrm.ro
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 11, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
09:70:0A:4A:58:2C:37:1A:68:C6:F0:6D:B7:27:2F:DD:E7:54:53:2E:92:2A:A3:0E:8E:69:40:19:7C:B0:1C:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
alecsgarza.com
1minai.com
a2tradingworks.com
sso.aimeta.world
mta-sts.andrewgriffith.cpa
architectmindframe.com
ardstonerealty.com
www.arkidisenos.com
arturarc.pl
www.bardeko.in
www.blur.live
ecommerce.carptech.org
cevillaconstructora.com
dpo.cfsp.co.jp
chemmatch.net
www.chun-wei.com
panel.clickscape.digital
link-dev.pro.chillar.co.in
winwith.britenet.com.pl
commoditiescard.stoic.com.sg
app.humananalytics.com.tr
commit-conf.com
aslan.cross-switch.app
space.dev.br
www.devjavu.space
drlingua.com
dungeonpaper.app
easysites.cz
www.emoboy.org
ericsmiley.de
www.esignreader.org
www.evolutionbeauty.ro
fundwiz.in
www.genasaas.com
gnfincorp.com
goodstuffbook.club
www.gymtrack.fr
handball-heitersheim.de
www.harzspots.app
api.housezy.vn
www.hweb.wine
tueytoma.in.th
www.institutopensy.com.br
profiles.intech.studio
bro.jarvistech.com.br
order.joans.se
www.jordaneckowitz.com
pokeca-souba.kerusu.xyz
koloapps.com
koubou.tools
kreyoltranslate.com
kryptovero.fi
landing-page.cloud
flashcards.learnprogramming.online
lodocomedy.com
www.lqve.jp
mangatoken.org
markiq.co.uk
mercadito.com.ar
pokertracker.mousegaming.net
accounts.app.test-1.movinmotion.net
nailsandus.com
breaking.nenovinite.com
www.nhiroyasu.com
www.novoboxembalagens.com.br
www.nuflus.ch
optimaldigitalgrowth.com
www.otakujsdev.moe
games.peppysoul.com
pidibit.com
blog.halt.project-p.jp
www.puzzlelite.net
www.quaisecurity.com
quantumrover.in
rayhuang.me
devbusinessone.app.restoturno.com
whatsapp.reverystylo.com.br
www.saarthiphysio.com
www.saydata.tech
quptos.sensevr.pl
form.short-video.jp
auth.silvie.org
siscorpmex.com
skillscout.ai
soapboxrace.world
appbuilder.softcrm.ro
midas-app.speakylink.com
swabifoods.com
synopti.no
fiat.teuestoque.com.br
pro.thinking.poker
www.tocomgmt.com
tool20.biz
link.totersapp.com
chat.travisevans.org
trlcl.ai
wallofhope.community
www.wavejamapp.com
teste.wondervintage.pt
www.xauri.com
Other domains in certificate