Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=brandlab.easysignage.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 16, 2025
Valid Until
February 14, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:7B:49:45:22:5A:2A:E0:B6:FE:1E:3C:44:98:9F:CB:AE:4B:7C:61:72:11:52:65:AF:28:22:81:22:BA:D9:B4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ashwanthbk.com
www.4images1mot.app
pro.agrio.app
ajmancarreovery.online
www.allisonfang.com
altiplanoinmobiliaria.com
www.amver.co
ajira.amwatatech.com
tiendas.apie.app
link.artistajobs.com
atlasvpnpartners.com
test.ayeq.io
www.badbitch-security.com
bdequipos.com.ar
benjamincoutts.com
test.bepay.finance
bookworms.jp
camilacarnauba.com.br
cattify.app
app.chessgo.in
share.churnme.app
cidadaniaportuguesa.com
dealsai.co.il
saboogroup.co.in
sipardy.coderave.dev
www.colinwhite.co
docs.cornellmarsrover.org
training.datavedam.com
digiturn.app
firebase.dital.nu
brandlab.easysignage.app
xquery.elliat.nl
www.emptyobjects.com
eunastudio.cl
app.evnet.ca
app.farmart.ai
dev-app.farmart.ai
a0ft.foodle.su
www.goodplan.app
csblocks.gtoybox.net
samea.haendel.dev
delete-me.hark.eco
www.harobox.com
hnasoft.com
admin.hrnamiru.cz
mobileauth.huey.co
www.icarushotsauce.ca
vuhaithao.id.vn
ikaconfort.com
it-zero-ichi.com
shopsales.jopit.com.ar
admin.julybiplobemeyera.com
kiid.com
www.kunjisoft.com
kuyawalds.com
launchie.fun
login-app.leisureappweb.it
noteshare.lmnet.cf
pinterest.logandevelopment.io
www.malakfoodstuff.com
mdelrio.cl
mikiberry.art
app.minahq.com
www.missesroboto.com
dashboard.nepalmediagroup.com
nexusroboticsfoundation.org
ninazador.com
nkenspen.de
contextual.nordic-ai.no
www.nufeed.id
complete.onboardapp.co
pwa.dev.orderease.com
surf.patrol.co.nz
plugai.world
www.positioned.app
www.prasithaenterprises.in
praszad.com
qashierordering.com
dev.recopo.info
www.dev.art.relyt.app
rockgames.app
sagevatika.in
securitycamera.cz
simple-invoice-generator.slashproject.net
builder.smartimob.io
www.ssiapaltais.fr
www.sushibay.ae
swifttms.cloud
app-link-dev.syodai-marugen.jp
tallycounter.click
www.tarkabit.com
fisioege.timp.io
phx4fit-cn.timp.io
tudka.hu
www.udgoodlink.com
www.crm.vitaljobs.ae
link.vpay.africa
www.webbricks.io
wickedmainelobster.com
zavy.app
Other domains in certificate