Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=superbets-admin-staging.tournament.gg
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:42:C0:1F:6D:0F:FD:47:87:B5:47:8D:2E:05:55:13:F5:EC:98:4F:11:32:7E:A6:F8:83:14:1A:D4:59:40:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
alikhm.xyz
www.3004astoriapines.com
aaced.com.au
andrefilipepereira.pt
aoorr.com
aulice.ca
aut0.ru
www.autolight.io
basedlogo.com
www.body-balancing.co.uk
bram.team
link.celebhere.com
www.ckdtrade.co.uk
voting.cloudasphere.com
www.compramostubicicleta.es
contigente.com
algo.coolcold.co.uk
support.dappre.com
www.devteam.ninja
www.dirtybroccoli.com
dt-franchising-staging.districttaco.io
checkout.dspna.org
app.equahealth.io
euc-app.euc.cz
dev.ezretro.com
faithheatingcooling.com
hpe.fictiontribe.com
app-test.zeus.fidelissd.com
fillupwithwords.com
www.frankl.io
europassistancegr.frontbox.app
app.getzigy.com
app-temp.gmbapi.com
cb-ai-consultant.gooya.group
www.hangar.social
hasanalkhaled.com
www.helmikv.fi
static.hotelvip.es
www.meet.humantold.com
iaprep.com
imp-events.com
allocash-dev.static.janngo.tech
jeanhdezportafolio.com
jesipow.com
jovannikolic.com
www.kish.de
www.kuwaitinside.news
legalbird.io
martinteufel.com
maximepawlak.fr
mikeswindowcleaningutah.com
minami-ise-stamprally.jp
cms.mushroomtales.in
myschoolbusapp.com
mytt.app
pic-loteriescat.mentor.neccton.com
sitemap.pendla.com
www.podcast-admin.com
www.pooladvisor.com.au
www.postpost.it
viola.pragith.net
practitioner.primecare.au
www.programmingdenial.co.uk
qphixcomponents.com
www.rcare4u.in
auth.realkagoshimaestate.jp
rikakokashima.com
roofer26.ru
www.royalguardian.ca
api-docs.rvrnc.io
safferproperties.com
restaurantpanel.samnite.it
semba2025cohort.com
www.sermetkose.com
v2-api.sfty.ai
www.shelleytushinski.com
bridge-rwa.skey.network
smartbusinessct.com
sneeddrums.com
snbadmin.solerabank.io
www.sureshpenikelapati.com
www.szepsegszalonerd.hu
www.tacknest.com
dev.thecostaricancollective.com
dev.thepetdoor.asia
thept.shop
verify.topshelfgradingservices.com
superbets-admin-staging.tournament.gg
www.tuhkana.com
twowords.com
neues-official.umishun.com
integration.espace-accedant.upbycellance.com
www.uvacellar.com
www.vantekgroup.com
www.varartech.com
www.vetcorelabs.com
links.videoneukkari.com
mta-sts.wimbledonlighting.co.uk
xb1.biz
link.yirental.com
Other domains in certificate