Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=beta.borneoapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 14, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:D6:4D:C0:00:3E:EE:55:48:92:3A:0E:EA:80:01:07:07:6F:48:9A:EB:89:62:AD:A1:6B:31:E1:1C:4E:AA:46
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
anoeta.nl
app-pro-scoring.1stcutoutings.com
restaurant-rewards.5loyalty.com
7april2019.com
www.a2techify.com
www.academialuanova.pt
aichannels.net
welfare-manager-preprod.akongo.fr
aljahazi.com
aotb-kiosk.com
crm.arlynk.com
ayankapoor.com
www.backwoodmedia.com
www.bellatrufa.com.br
www.bielyovciak.com
birdergame.com
bookbanter.co
beta.borneoapp.com
dashs.bylucaslima.space
byz.ca
avex.demo.chance-store.jp
sko.subk.co.in
omnitechstudio.com.my
noahome.com.tr
wallet.preview.contentfabric.io
bluedev.creators.site
cubalibri.it
daycoor.com
desktopguerrillasllc.com
eddgen.com
www.elpwifi.it
quiz-session-manager.eventoo.fr
master.exitplant.id
triangle-fast.eynard-home.fr
academy.fckosova.ch
www.floricostruzioni.info
fplugin.com
www.gia.app
t.gomezlandscapeandtreecare.com
habitminder.com
dashboard.hark.eco
widgetibmr.headstart.biz
hellene.eu
www.histopatologiaoral.com
www.hotelnaskalkach.cz
doanducanh202417091-it2000.id.vn
openimg.inditech.in
jiteshshukla.in
keizok.com
www.kevinamm.com
www.kirantextiles.in
www.klassekartgenerator.no
pengestyrke.knowledgebase.no
anya-admin.latchaid.com
sa-athletics.leaguesquare.com
leetmigo.com
web.lifegrid.app
valy.loesuspedagogia.fr
secure-dev.managemybusiness.app
manuelsaleta.com
www.marcosraimondi.com
martinyu.app
www.bookcourier.medicallogistics.co.uk
www.bodymirror.myelinz.com
dev.myetpwallet.com
app-cm.preprod.ouikey.fr
perfectstore.pepsico.pt
club.personalab.id
login.pgslotxx.io
phovo.co
api.propely.io
www.pulseviewtech.com
www.quizpiecesauto.fr
relaxtea.in
chatter.salmansayeed.com
www.samratdey.com
www.sellaprojects.com
www.severin-vonrotz.ch
shlrn.com
www.smart-beauty.co.uk
sneakertopia.org
www.soundsetstudio.pl
splitbear.net
www.studiodahu.ch
childcare.sumamachi.jp
www.swastikgoldchennai.com
talo-bhp.pl
link.thecup.kr
themusiccorner.co.za
staging.my.valid8food.com
www.verse-bid.com
verzekerdezaak.nu
www.vipgsmstore.com
verify.social.vodafone.com.au
www.whiteoak-church.org
www.writeii.com
yopido.online
youngriot.no
www.yuhanliu.me
www.hulpinhuis.zuidzorg.nl
Other domains in certificate