Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=busescool.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1D:8A:3B:9C:A1:E8:0B:BA:06:D2:D4:A1:36:2B:51:8F:5D:2B:17:FA:98:33:BF:CE:C7:B6:E2:1B:62:78:EB:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.ardent-training.com
actnowgbs.com
aliboasia.com
aravindmetku.com
aryaa-hanamar.me
www.asneed.me
avocadic.io
sso-dev.betasi.pl
auth.bitbot.plus
synexion.biyyik.com
www.bostonswinglabs.com
www.brandweer.it
busescool.com
wh-ah.at.calculatorhub.app
cannahail.com
capp.vip
caseorcontroversy.com
www.chasersradar.com
share.cheaseed.com
checkmatetracker.com
dispatch.cirrushk.com
climatescience.com
edvisory.co.th
dundalkeagleavenue.column.us
gartenbau.cunaku.de
dentalya.ie
www.desdutchessenhaus.com
football.draftkick.com
dronecast.app
www.drvigneshneurosurgeon.com
landrick.edlin.app
aka-dev.ehappen.io
www.eod-now.com
dtg-crisp.exploredata.app
fairy.gallery
edu.feralic.hr
www.freelumpia.com
www.gllogisticsco.com
gmp-compliance.net
www.goldfish.dev
guitarlessonsportsmouth.com
www.helsingfors-vanda.fi
www.squirrells.horseriding.app
ipharmacist.com
jinsapp-jp-stg.jins.com
jmblum.com
admin-dev.kabadmandi.com
kai111th.com
www.kajbra.com
kaungyang.com
www.kieferorthopaedie-zehlendorf.berlin
market.kmt.in
www.lab-keiba.com
v2.centre.lavenirapps.co
console.magicflow.ai
www.maisunsystems.com
mattwheeler-dev.com
mikeherronen.com
mosjoandy.com
coupons.muliya.in
fb.mysosfamily.com
n2-dev.com
newzgator.co
admin.nofearbear.com
onewayoutstationtaxi.in
stpud.opendata.report
patrickwilliamweaver.com
phelanjo.io
b.pinsteps.com
www.polariskampen.nl
polkamoose.com
app.prostaff.sk
prsdairy.in
www.ramirex.com
www.reckxl.media
staging.relative-ci.app
auth.repostapp.com
zoom.dev.revnt.io
admin.staging.roboflow.ai
app.salsanena.at
sanginijewellers.com
sankeerth.dev
www.scrap2good.com
seandodson.com
shooglebox.link
shopfm.com
www.smyi.me
share.stoppoint.com
app.storiagen.com
www.susiadapters.com
tailorshopapp.com
www.teacapps.com
therentdeck.com
app.todayart.net
uiclap.bio
urbanrider.in
corretor.vivaquartzo.com.br
www.vrtue.io
wolfeyeconsulting.com
zuba.asia
Other domains in certificate