Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sttkyluat.congso.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 19, 2026
Valid Until
April 19, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0F:0F:02:8C:E0:A9:EE:FC:D2:A9:E1:A0:5A:7F:DC:D0:01:26:B5:74:DD:2B:BC:3E:39:0D:8B:B6:7B:11:43:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
arrowsbs.in
www.agendavirtual.app
akusjarvi.com
ametekadapters.com
www.apocha.biz
ayeqstrategy.com
gamesadmin-slots3-prod.bagelcode.com
www.ballroomscores.com
www.bardac.ro
besserals50-50.de
bktourstravels.in
www.bktourstravels.in
www.blapointe.com
bridgechampions.com
c-e-s.co.za
brandon.dev.app.carmunity.io
chitlink.io
admin.choudharypumps.com
ckonewaytaxi.com
cliquesaudeweb.com.br
preprod.meu.clozzy.com.br
wed.studiorami.co.il
www.acerealtors.co.in
mi360.theagent.co.th
happyliver.aebc.com.vn
sttkyluat.congso.com
www.cryptopanda94.com
damianodallapiccola.com
www.dashfruits.com
gestao.educasobrado.com.br
www.emmaline.co.nz
evover.com
www.farmakim.com.br
www.finxeduca.com.br
www.firesafe.app
13cabs-business-staging.fleet-dev.com
julien.foratier.net
gnanadeep.dev
gogradulator.com
gpscam.store
admin.happyhousekeepers.ca
appointment.hermes.com
hilitr.com
www.hlo.app
www.homecomp.com
bo.hpptd.com
hsuwaiwaitun.com
hudsonperdue.com
www.hustlesounds.com
splitnest.infoskillstechnology.com
jasminekmacias.com
johnmarsh1.com
justpnr.com
kamusinavlari.com
kisfali.com
www.knowhowist.com
sandbox.lambda-code.com
lightmate.app
web.malayflare.com
memcrimetracker.com
memoe.mx
migrantvisa.co
miguelbogota.dev
mikelehen.com
www.mirianaemarioluigi.it
m.momento-development.com
multiversetv.com.br
myairvault.com
www.enjoy.nari.net.au
provider-test.noknokindia.com
nothingburgerbook.com
gtfs-llm-translation.odpt.org
www.okie.au
oliverrevilo.com
www.orajas.com
www.outdoormusichk.com
www.oversikt.org
pet-match.fr
www.photoanywhere.com
pitoful-recruit.com
protectmymessage.com
www.quike.com.br
ratiyalwings.com
sannbi.com
www.schnelltools.de
scrubsanonymous.com
sds-qr.com
www.simdroptaxi.com
oh.styreportalen.no
bodacivilrodriguezlarin.swanmoments.lat
www.tiruvannamalaitaxiservice.in
tommyklemets.fi
www.trimediaxr.com
trofeobenedetto.it
www.trusty.li
insights.umanni.com.br
www.vectorbar.app
sac.vivu.vin
race-calculator.watchforward.co
app.zorrowlabs.com
Other domains in certificate