Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=new-staging.bdata.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 15, 2026
Valid Until
July 14, 2026
62 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:BA:CA:6B:1B:58:5E:70:04:59:C3:C2:96:EA:EF:BE:C6:5E:79:42:13:1B:81:14:8D:51:7D:45:25:78:4F:39
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.quickcounter.in
abacus-exam.com
adaptivservices.com
gilded.aethelian.eu
url.akasa.com.lk
wms.americantiledepot.com
www.annieyeo.com
www.avintas.ch
www.ayushcloud.dev
new-staging.bdata.ca
www.beatsandbbq.de
benjnz.com
invite.bizmakebiz.co.il
boddedigital.nl
businessriver.buildingoftheyear.ie
challengepulse.life
maintain.changrun.com.tw
discipulo.clau.io
cleverinspect.clever-care.cz
auth.cords.ai
random-draw.damiencaron.fr
www.debloc.ai
pilot.devpit.store
tv.diatime.app
app.diengcool.com
drhmediator.com
www.drhmediator.com
oee.effimetrics.com
www.eminencemsmeawards.com
www.energodosvid.com.ua
efiles.enscygen.com
followertracker.org
dev.url.gdsc.app
guinchosbrasil.com.br
habittree.xyz
www.haloportal.id
rezension.heidi-mode.de
hifzease.com
hkintercity.org
hlavac.business
hollowbricksmachineservices.in
www.hollowbricksmachineservices.in
honoresmonge.edu.pe
posada.icentral.net
indikids.co.in
www.indikids.co.in
plimpton322.influential.digital
mea-api-qa.itxi.aero
www.joaqin.com
biztomato.ju.studio
adminapp.justonechesed.org
kalaaastha.com
karibu.online
www.landowner.mn
leoaxis.in
www.mabase.app
maceladourada.com.br
marketingjobs.app
www.mevronrecords.com
mind8x.com
mk-kulucka.com
c.muna.center
naomeperturbe.com.br
expense.natchalogs.com
huiya.nexilab.co
www.paisleyandjoy.store
bestellen.pizzeriatonis.de
www.plyend.eu
www.pretell-morency.ca
vip-cards.proespx.com
prognai.com
qrcountdown.com
4ownercars.rafgui.com
www.raufoss.nl
realm-arts.net
rhino-enterprise.com
riskbridge.com.au
rovian.cc
react.samuelcaetite.dev
shareo.xyz
auth.simplestandup.com
sitamicrosystems.com
www.site4c.com
www.sivafreespirit.com
admin.songz.app
srizonx.com
stickynotez.com
storyspeak.app
vanigam.subbuapptech.in
links.tabl.page
taiwajapancollective.com
www.tulisiat.fi
www.ujwalbasnet1.com.np
www.vcallia.com
super-admin.cook.virtualhole.uz
vitalis-r.com
tataxingqiu.xinhe.games
xyt953.eu.org
calendario.zencillo.com
zyqavo.com
Other domains in certificate