Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.staging-portal.k-9apps.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 04, 2026
Valid Until
May 05, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:C6:FF:98:10:CE:E7:3F:5C:B8:F6:BA:3A:BB:9E:3E:33:40:0E:88:EF:5B:00:83:11:6C:AD:17:14:FD:DD:FD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
alpha.b2bpresales.com
registration.4-sure.net
app.abikoutsi.fi
grudzien.aktualnosciwchorobachzakaznych.pl
www.aquavitamineral.com
www.balamlabs.com
rtarmenia.bisflow.io
finance.bloops.com.br
shop.boostedbrothers.co.uk
api.brightmile.io
empresas.cafeunido.com
beta.bloxtax.co.il
auth.kaansaka.com.tr
www.comunitaenergeticarinnovabile.net
criterioingenieria.online
danopia.net
auth.caixabank.datafordeals.com
pro.dessertissime.fr
warpex.dhanigroup.com
remote.dhruvrathi.com
app.dinorace.io
servicepartners.dlchub.io
awe-docs.dogonews.com
www.drsarulrhaj.com
europe.earningsahead.com
www.euroshopfitting.com
ever.gratis
ziektewetloket.felixxgroep.nl
www.filleruputah.com
u.firstfly.app
qr.fitkore.com
fmuirhead.info
frolikov.net
admin.fundforward.co
futbolmatch.com
report.gm6.com.br
api.goegonetwork.com
auth.goosemap.com
www.gorillasports.qa
graipe.xyz
www.hexcursion.com
horneandoydecorando.com
huster-5b33b.id.vn
mhathep.in.th
blackwoodburger.infinitifood.com.br
community.infrasmart.co.za
www.init-power.nl
www.internetcreaindipendenza.com
www.investygreen.com
www.iottable.online
teams.itclub.ro
joebrown.dev
www.staging-portal.k-9apps.com
www.kapi.com.ar
www.killergf.com
kodapro.dev
elaring.kompetansenorge.no
lrsalign.com
m--t.wedding
staging.maamen.com
www.mecks.in
auth.meetlio.se
ovucycles.mitkowski.dev
www.mohitbairwa.xyz
www.nelsonenzo.com
collegemitra.net.in
sanmitrabank-agm.newsbharati.com
www.olesturchyn.com
ide.orbit.codes
pathsmentorship.com
techba.plen.jp
www.readingchineseschool.org.uk
app.recru-app.com
manager.roperetail.com
sabariintelligence.com
shahitsolutions.com
shelf-designer.com
sibertakvim.com
singamskidsclinic.com
www.spatzvomdach.com
stellab.fr
www.stellab.fr
tanjafrisch.com
www.theexpeditionscompany.com
theoctagon.in
links.thriverewardsnv.com
peeps.unirakun.app
doc.dev.usemason.com
qa.storybook.vezham.com
editor-res.vidma.com
www.vqspraktis.com
www.vtpdev.com
weatherforddds.com
xr.wec360.com
writedown.dev
yinuohuang.com
yogiprema.me
youmatchwho.com
yourlimitedlife.com
www.yovesi.fi
Other domains in certificate