Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.superone.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 05, 2025
Valid Until
February 03, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:1F:E8:18:81:70:BC:6E:23:B9:6A:FD:8A:5C:B5:54:1C:7E:2C:1A:5A:E2:4C:2C:8E:33:90:CF:F8:B7:F3:01
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.speak-up.app
aguadosal.com
alextotolici.com
animemh.com
links.anjocnh.com.br
app.avisacar.com
bilgiduellosu2.com
biriczbence.com
bitsbox.com
bobbyshoor.com
www.bookkashmir.com
ielts.web.cambri.ai
customerapp.canarahsbclife.com
www.codeandmore.pl
www.connectedapp.in
backoffice.copyrightagent.com
datachemicallab.app
devudex.info
dextrous.com.au
www.dheshal.com
www.dpyra.es
drivemaster.app
hospitalfly.drtis.com.br
auth.eatsumn.com
www.echoboard.io
www.elderdrug.com
enigma-research.com
app.erevie.pl
erythcosplay.com
flexfiteurope.com
vote.freehub.app
gamtha.com
order.gospurr.com
ultra.hanak.in
www.hoa.do
feedback.hydra-newmedia.cloud
huy7trung.id.vn
koshiacademy.indiandevelopers.org
mozaikplay-stage-5.ischoolconnect.com
johnlevengood.com
khatab.me
knife-fight.io
www.koshka.se
www.krishnaengineeringironworks.in
larsensoren.com
leagoo.org
app.leaversdestinations.com
littleireland.coffee
aire-madrid2.lobelia.earth
www.lumarcolors.com
link.marahplus.com
abc.md-ev.ovh
mikasinovic.ch
www.moduluspi.com
limited.myconreg.xyz
www.myyachtlive.com
glot.nargil.net
neact.blog
life-plan.nibunan.in
www.nodejsmongodb.com
onenxt.shop
agent.onntime.in
app-admin.kizuki.or.jp
sumo63.pedidomovil.es
pirate1.cc
app.podygo.com
front.publicidadebh.com.br
quantumrehab.in
read-a-book.app
www.reccs.app
dev.remedi.app
www.ric-escape.com
audit.dev.safetyinminutes.ca
www.sarahsartworks.com
putme.scholarly.africa
www.sobiech.pl
spryly.app
sterncardio.com
www.sukatabjj.com
app.superone.ai
synworks.jp
www.teamspot.club
themerida.in
uat.daysix.thetraumaapp.com
www.turnberryplace.vegas
u4k.turnosweb.app
th.u-voice.net
userlook.co
chat.veckta.ai
venyu.in
www.venyu.in
via1actea.com
wadostudios.com
app.wannapark.in
servicereport.welovetech.at
prototypefitnessapp.xkal.fit
www.yazanalamin.com
todo.yukiotsue.com
link.zakesoft.com
dispatch.zoomies.io
Other domains in certificate