Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.automagicalapps.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:E1:98:E8:4F:08:69:2C:3A:83:5D:E5:99:74:1A:25:BF:C6:EA:22:6C:3F:A4:D5:0D:3A:0A:3F:A6:73:93:25
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.questionable.io
helpdesk.agbsul.com.br
akhydraulichub.in
www.alenasoft.com
amiburntout.info
anforasdeatenea.com
infinite-scroll.anusha.dev
u.anz.com
www.apexdiagnosticcentre.com
www.artemis.studio
artifutech.com
www.automagicalapps.com
bestellen.baguetteindi.de
bdpnft.com
pwa.campusexperienceapp.com
share.cartsini.my
www.chiper.dev
chochewees.com
euromedicare.co.in
nem.dotevolve.co.in
www.ujwalbasnet1.com.np
cdn.aitcorp.com.vn
admin.creditoperola.digital
crypterra.io
www.cryptoranksnfts.com
david-sousa.pt
diegopettengill.com
earlylearnersmontessori.ca
edisoninteractive.tv
portaldummy.ehryourway.com
www.eishinsangyo.com
japanzloer.kosharig.eu.org
fleuriste-evidenciel.com
furasoft.com
dev-stanaka.gokr.dev
www.gonaker.com
harshgurawaliya.com
policy.homehabit.app
icy-tech.com
ikonico.co
virtual-tour.imperial.ac.uk
www.investesolar.com.br
islec.100.pn
www.jamesl.org
payboss.kalanavw.com
city1.karla.ai
www.kenzoq.tech
development-trust-webapp.knolskape.io
korobeinikihansblog.app
cms.staging.latinad.com
panel.staging.latinad.com
planner.staging.latinad.com
leadertrip.org
esis.lexlibris.nl
quillacollo.makepoke.com
xpromotr.maplerope.com
www.mediatorsr.com
mindcheck.se
ambrosia-qa.mobilenxt.app
www.myspringspeech.com
www.naiumang.org
www.nofitkartoredjo.com
portal-test.originsme.com
morris-meadows.ovh.org.uk
www.partiturasdmariachimlg.com
peptiplan.com
rg.petronijevicm.com
pixelsemotion.com
behold.policoders.com
go.prophub.vn
realmaffair.co.uk
cimm.riseaccel.com
test.rk9.gg
staging.chain.ruroc.com
www.samandcamille.com
saneramasala.com
travels.sanwo.io
sawadika.es
www.shipshap.co
shortfuse.games
matcher.showmd.vip
zahrady.simcisko.digital
skinchalet.co.uk
admin.smartrails.net
health.tannercottle.com
auth.tickeri.dev
www.trackvance.com
www.tt-promotions.nl
valeriaynoel.com
www.vectorroottech.com
vendorsman.com
vetbet.mx
virtualisingsara.com
www.wartezimmer.org
websensum.com
app.wellemental.co
witness.center
www.worldfamousapricotphotographer.com
worldl.io
build.ziphee.com
Other domains in certificate