Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dashboard.smob.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 12, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FA:F0:1F:F7:D9:9D:82:C5:B7:A3:6E:9F:0C:9E:D0:86:20:A1:B2:3F:17:6B:62:43:7B:C6:FF:9D:06:DC:65:98
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
askuser.xyz
ashley-sectional-config.3dcloud.io
www.3rdrockai.com
sir.abctalkies.in
www.alastaircallum.com
alvarezcarro.es
dev.app.amooto.com
rolodex.angoose.dev
apoc.app
poocho-staging.aquators.com
staging.ariwbolton.com
astrologyfordays.com
quiz.atlantic-blockchain.com
augurvista.com
aurient.io
www.bestekredittkortet.com
broquotes.ca
bug-dash.com
www.butgodbook.co
connect.campusthreads.co
link.carcollector.app
cellandgenedna.com
clearagenda.io
comwaste.com.au
www.dab-legal.com
pitchin.deemples.com
auth.digitalagenda.app
www.digitaljoyride.com
dorotah.com
1tap.drdng.dev
emilu.it
oauth.episoden.com
floodit.app
gadept.com
www.greenwoodmovie.com
www.groupardy.com
harrisonhaigler.com
www.hir.sa
tech.icentral.com.mx
imessagegroups.online
www.inhomeclinic.com
intervalrecognition.com
billing.ishealth.app
www.jose-cabrera.com
ugm.klarway.com
konkurse-pune.com
www.loggable.co.uk
staging.manager.i.loplat.com
weather.matt54633.com
www.mayerseidman.com
link.medicalreports.app
pids.miele.de
mntnrd.com
agenda.mymoons.pe
nymip.com
www.objectivity.ca
www.paranaempanadas.com
app.pedido.one
miles.pete.run
picsaver.net
epic.pkpd.net
willow.plantwithwillow.com.au
console.postcode-jp.com
prana27.com
praveenassociates.co
www.prodigypadel.com
www.questopconsulting.com
www.readingmusic.org
demo.repapp.co
www.repeteai.com
play.rickrolldetector.app
bestellen.romantica-waltrop.de
rosefinancialshop.com
salesgear.jp
samyakriddhi.xyz
sashasabherwal.com
x1z2y3.savingwaste.com
sigelab.net
www.slanchevdom.com
dashboard.smob.io
soundguesser.com
srsenggworks.com
sumnersautoservice.ca
tachyonet.cloud
www.tarufuku.com
www.tastingplanner.com
www.thekrois.com
www.thequeenenglish.com
staging.app.ufincs.com
unitedvideo.nz
vinaydeshpande.com
erode.vishnutaxi.com
brokeradmin.qa.wallit.app
brokeradmin.staging.wallit.app
app.whoma.co.uk
www.wikitutor.ai
woelk.io
web-staging.wrktalk.io
zaraatlink.com
orgchart.zenithr.net
Other domains in certificate