Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=order-dev.gospurr.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 07, 2026
Valid Until
April 07, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:DE:88:6E:DA:B5:BE:99:48:C2:10:59:3C:53:A3:D9:57:9C:C5:43:E3:BE:D7:86:DD:C7:E7:69:9E:AF:D2:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
alvarotech.dev
cercoassist.adama.com
aimethods.co
aivatetech.com
adam.aliibrahim.dev
www.aneefood.com
admin.apem.cc
preview.arzneiundhaut.de
bazarbhai.com
app.benchgymlog.com
bishnupriyasangeet.com
bizbuzzardusa.com
www.bloosee.com
boisecanvas.com
calstec.com
carmechanicdxb.xyz
www.chillsynth.com
xpulse-cms.co.in
codexdami.com
iamdesigner.cogniteapp.com
djtrankilo.com
dml.rw
drivewayconceptsinc.com
get.earlybirddelivery.in
ethanbdunne.com
exploroff.com
feelsingapore.com
firebase.flibco.com
fortyseven.dev
gamebrary.com
books.gentry.codes
getschoolyard.com
order-dev.gospurr.com
growpecomm.com
www.guavaprints.com
hamsted.in
hijama-bruxelles.be
hillmetalcorporation.com
generic.imperialacre.com
app-ester.investous.com
jaehoonhwang.com
jamblelink.com
www.jeshurun.ca
dev-kanserien.kenartmedia.com
koshobai.com
admin.staging.litedemy.com
admission.staging.litedemy.com
staff.staging.litedemy.com
student.staging.litedemy.com
lohnbot.at
game.escape-404.maane.jp
maierzone.shop
usendpay.marlim.co
bestellen.med-buldern.de
www.melitocreates.com
mykivoo.com
www.napolipizzasqhill.com
mentor-pre-dev.neccton.com
get.stage.neoufitness.com
nirav-gujarathi.com
sledmass20182019.ondagoapp.com
links.peeknest.com
phoenixtechventures.com
pihopa.com
beta.pitchscore.com
poly94.com
promptpartygame.com
admin.qrowdapp.com
signup.qwi-did.io
rsiq.ch
ryo-kobo.jp
saboonexa.in
www.scaletempltd.com
servi.in
servicebuds.com
singtecs.com
feedback.smbtecampus.org
stedamaps.com
stokedfoodtrucks.com
onbroda.storyyell.in
stridesoverstigma.com
sukabo.com
svscontrols.com
trip-service.staging.tada.dev
www.tarracoapps.com
thefazbearfuntimeservice.com
app.thehappyemployees.com
theinfinitybottle.com
app.tjshippingexpress.com
nav.tk-dev.at
tsukumikke.com
www.unspoylt.com
urielvillalva.com
utimetable.com
www.uxstash.com
firebase.vclerk.com
woganlogic.com
www.wrttr.com
xflow.design
yieldex.org
Other domains in certificate