Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=uat.gokhaleandco.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:09:E2:E6:35:1A:16:BB:F7:EC:19:5D:16:16:1A:E4:06:1A:20:53:E0:C5:4B:A4:86:2B:DA:34:5B:50:4A:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
amigao.appshare.com.br
api-services-portal.5inline.io
adamtsaidev.com
test.aeat.us
agenciaciclo.com
alexanderristinmaa.se
amiriscostapsi.com.br
anandnatyalayas.com
aptndr.com
linoleum-public.bambuser.com
batuhanhidiroglu.com
app.bcode.cloud
blotch.app
boldambition.com
payadmin-beta.branchapp.com
dev-talking-talent.geraldeve.cake-lp.com
www.chadleong.com
change-education.co.uk
claytonortiz.com
code-dee.com
codexception.com
app.collabble.jp
cybrix.co
oc.test.deephow.ai
www.dmasters.in
doggedlydevoted.com
dssdglobal.org
duonote.app
dutton.com.au
elmontuvio.de
enlinje.se
your.epap.app
www.esconline.nl
token.fintlabs.no
app-dev.fitrwoman.com
www.fjedi.com
foudroyer.com
fracviz.com
garrettj.dev
uat.gokhaleandco.com
app.gostream.co
gunpowderandgraphite.com
harecord.com
app.hellofolx.com
pita.hrtech.com.br
ikloudforce.com
ilariabonadiman.it
ineuroninfotech.com
blog.interfamilia.co.jp
reactwitter.jackyly.ca
jalenmedialtd.com
joedarlingpottery.com
link.jokateszunk.hu
event.kekl.org
procurement.laincosoftware.com
www.dev.liftpulmonaryrehab.com
go.linbots.com
lintukoto.eu
lyftdrivers.ca
sologas.marcafranca.com
www.mirdevs.com
mizeebimedia.com
moodfood.xyz
www.morwils.com
quote.mypronto.io
myadmin.nakongsolutions.co.za
embedded.neuralpayments.com
noirscape.com
nft.onnia.art
opportunityzones.fyi
orsima.opzak.app
cp5759190147530752.order.place
ypicapp.nac-sa.org.za
perro-solutions.com
gpg.philipp.ninja
piertopeak.ca
plotify.net
www.pongo.us
portalibg.com.br
demo.portfoliolink.co.za
www.puuapaja.fi
dev.rokinapp.com
polecam.rosmedia.pl
www.sauceden.com
kennisplein.sensire.nl
clientes.shieldmoto.mx
sjip.org
demo-mim.smartof.app
sophi-fy.com
spicyleb.com
www.stichtingpaulerdos.nl
www.superdash.in
zelda.taigmaccarthy.com
tbrapp.co
www.theroyaldeco.com
tickaccount.com
www.tiria.org
tivotv.support
www.vixar.co
www.xparis.ai
Other domains in certificate