Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=drivers.zunocabs.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 19, 2025
Valid Until
March 19, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:4A:32:A9:57:1F:71:E5:56:36:D5:05:2A:A4:8D:D0:7C:A4:0C:88:C3:F6:4A:E7:CF:C7:11:80:FA:00:D9:85
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-n2drdz35LmaxJAsvp-GcqQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.hoopeye.com
321viajeagora.com.br
agrolend.in
draftkid.alandandar.com
arcelik.alpwcm.com
www.bodyshop-accelerator.com
boostr.id
chatopia.me
newsboard.chieftechapps.com
proposals-staging.cliccaefinanzia.it
hotel-concierge.co.kr
www.aimmo.co.kr
constance-et-gabriel.fr
browse.demov3.contentfabric.io
www.countrywaffles.us
smartsupply.dataauchan.fr
www.deciban.se
test.ascotgroup.on.decisionrules.io
www.diastecnologia.com.br
ecclesiaflow.com.br
recepcao.ecclesiaflow.com.br
honoresmonge.edu.pe
unlearnadmin.edvantalabs.com
eichiquiz.de
app.eleeditorial.com
www.financialskills.org
www.findallmydata.com
www.finhance.io
www.firmasja.com
www.gignection.com
www.glooni.com
guidaeimpara.guidaevai.com
www.admin.gymappen.se
demo.haliaustralia.com
dividirconta.higorcavalcanti.dev
www.hilleman.net
ignitiated.co.za
www.imp-ulse.com
instantwork.in
japan.intuitivedigitalexperience.com
www.jadefred.com
www.jalotsav.com
www.kejubycarmen.com
klmcaterings.com
www.kodapro.dev
kwactivate.com
cloud.lappso.com
www.lddmmc.org
ledgermart.shop
linkdev.lowkeychat.com
maerchen.me
admin.staging.manowpoint.com
www.martinbarnas.com
www.martinmade.me
vue1.mohammadkabir.com
www.neotericinnovations.com
www.ngentours.com
www.nissansherbrooke.com
vi.novacash.co
ui-preview.okaythis.com
nbfsc20192020.ondagoapp.com
rdcaicarafm.pampa.com.br
beta.peerlearning.net
www.playtictactoes.com
www.pokistudios.com
www.rcommand.com
resrcle.com
janjiwa.reyzeal.com
www.rutherfordlabs.com
saki-imai.com
www.saudegest.com
sxg.sdorica.com
aragon-dao.securely.id
app.sergentpeppers.it
links.seriousmd.com
org-int.setkeeper.com
www.sewelljohnathan.com
shiponadime.com
link.shoofti.com
www.shubham.codes
singhcode.com
apply.smartstudy.co
www.sorryimtall.com
demo.spaceknow.com
www.stateofnations.com
lodur-beta.stokkur.is
admin.sydetasker.com
tcgpacks.com
tismotek.org
tonycode.dev
loyaltydemo.topnotch.club
toshyto.com
www.trespagos.com
jotter-web.tujiorg.com
www.vovinamfontenay.org
wss.business
yonasalem.dev
zenithrenewable.ph
zstack.by
drivers.zunocabs.com
Other domains in certificate