Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fset-evadmin.sonice-aioe.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 06, 2026
Valid Until
May 07, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:9E:ED:B1:99:2C:FB:F7:5C:6D:0D:E0:A7:77:4C:78:CC:48:A0:62:3E:54:4E:28:4D:E2:BF:EF:C2:ED:9B:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ashleytarot.com
123lisbon.com
afternoshow.com
bearingshapes.agazagraba.com
www.agitly.com
www.ahmedazouz.com
aksharafinearts.com
ambrosiagulf.com
www.anamile.link
www.arznei-und-haut.de
www.augustbailey.com
www.auteneo.com
www.axcess.care
bedecisive.app
wine.benguelacove.co.za
boropost.com
www.botoelchupo.com
boudewijnbakker.nl
brianyang.org
www.bymas.cl
bytesalgo.com
www.cachii-atelier.com
app.catbuyer.com
cestasbemequer.com.br
chronixpulse.com
cinturi.com
cloaiud.com
cnctoolingsolutions.com
www.theconnexions.co.in
coachselas.com
app.cometelapp.com
construtoragobira.com
coupedubac.com
cpfthailand.org
customsbrainai.com
www.decemberhomes.com
www.defenderoftexel.com
denisnguyen.com
digitechtalent.com
my-portfolio.dsbalderrama.top
dugunplanla.com
exeri.ca
s.faithai.app
fitnesstrackgymandspa.com
sponsor.fitoutawards.co.uk
www.fundtally.app
parademinas.g2canal.com.br
getboind.com
auth.staging.gmassistant.ai
m.guc789pg.co
hairbymoosh.com
dev-staff.hairmake-theater.com
www.hearttheprocess.com
hippocampdaouzet.com
postulate.hispanossoluciones.com
web.app.holdo.cl
illumoria.com
insightmediagroupllc.com
dcx.inventures.cl
iotconnect-stadt-wuppertal.kapion.de
skyline.karla.ai
lineone.dev
way2share.logicwind.co
marketplace.manantialblanco.com
medicalhousecompany.com
mefe.net
registro.mejorpyme.ec
admin.tvat.motivate.nl
personalamps.art
www.pianosongbook.com
portal.pickappschool.com
docs.pixelover.io
paulstatus.prb.dev
puremomoffers.com
app.qrnet.biz
www.ramn.cc
www.raugh.club
www.rcloud.dev
beta.reblood.com
skstyle.in
fset-evadmin.sonice-aioe.com
link.sparkello.com
sparks.ee
squadhabits.com
www.streetartworldmuseum.com
app-admin.studybuddy.cz
marketing.super.money
swiftlaundry.mx
timet.io
tobiaszeltner.ch
tripledesign.net
editor.uimaterial.com
www.uzoai.com
vendyverse.in
walterzaninetti.com
worldofbasmatirice.com
yesyep.io
admin.yuyoapp.com
v1.zigbuddy.com
www.zwembadrekenhulp.nl
Other domains in certificate