Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=fb.alerzo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 23, 2025
Valid Until
March 23, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
72:88:55:9E:03:C2:28:4F:54:C9:03:DC:03:E1:9C:7D:62:D7:96:15:A1:3D:0E:2F:AB:FF:C6:A1:39:5C:FB:01
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
script-src 'report-sample' 'nonce-xdPPAk1ltx0iXl3mTKGmZg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self',require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.sunexpress.com
firebase.activatortube.com
www.airfresh.com.pe
fb.alerzo.com
avantikahealthcare.com
bhmun.org
www.bingokeynote.com
community-service-hour-finder.brendanharan.com
uhcpbc-storybook.bswing.com
www.cavargas.com
www.checkstore.cl
backend.chungxe.vn
authdev.climateiq.org
admin.2ndhome.co.in
cochonbyob.com
webapp.dev.conroo.com
www.consultarnutricionista.com
www.conveyware.com
darth-coder.com
auth.dashjoin.com
dataplace.ai
dayzign.kr
www.defyrretyverovere.dk
devosconcrete.ca
www.dgd.business
fkatelyn.xyz
www.flowpodcast.com
familylife.fndrsng.com
restaurant.dev.fuocos.com
georgiaproud.com
dev-swornstatements.gettonote.com
devlinks.gintaa.com
hhp-s.de
www.ibuprom.pl
adobe-staging.ideacloud.com
itmr.dev
ivanscherbina.com
karaar.com
kallakurichi.kishoredroptaxi.com
kanyakumari.kishoredroptaxi.com
nilgiris.kishoredroptaxi.com
thiruvallur.kishoredroptaxi.com
londres-dev.klarway.com
laperlaht.com.mx
mygolf.lovable.solutions
orgalife-admin.m1studio.co
mapofthedead.com
www.melinebeauty.com
metadecipher.com.br
www.booking.monachriding.co.uk
mprojext.com
dl.msiejak.dev
gifts.my-christmas-buddy.com
dashboard.mynextderma.com
roggiafanpage.nglcila.com
nishiure-dengaku.jp
nolabelsboxing.com
alpha.nwzer.com
petastorm.com
link.pfadi-rhenania.ch
web-conset-staging.redfox.dev
redsensei.dev
www.refreshphase.com
relayforms.com
repirmaosmetralha.com.br
restoguru.in
www.sahlhub.com
mgnrega.sayanmandal.space
www.serboli-bureau.com
app.simplyrealtech.com
www.smart-process.co.jp
hellogm.snnanalytics.com
www.sprinticket.com
www.spvdeepak.com
www.feedback.statueofequality.org
platform.taliferro.tech
app.tasksmint.com
teamwinter.nl
techsline.com
chuyenkhoan.thanhdt.dev
www.thatdogmachine.com
dev-viewer.the3dapp.com
app.thelewisclub.org
thelotusarc.com
www.leveldevil.tichkolay.online
tigermask7.jp
titlewhale.com
app.topotemps.com
www.toybrush.com
help.tutorme.com
www.universalstudentuk.org
app.untzuntz.com
www.vigobeatz.com
www.vinayvissh.com
visitkota.in
vuyothedeveloper.co.za
webetapp88.com
portal.wellings.net
wizepeeps.com
www.yoyomt.com
Other domains in certificate