Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kollectyve.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
19:AD:84:4E:DA:12:15:3A:FD:DF:56:95:CB:50:5B:0F:82:FF:CD:A9:B8:DB:B0:CE:7A:6D:36:7D:05:D1:2B:1F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
backuphive.io
astro.7sindhu.com
adarshpvc.in
www.adarshpvc.in
adarsi.com
adrew-app.com
agricolatrekan.cl
aivaportal.net
aivaportal.org
www.alexanderochangelica.se
alzstudio.xyz
www.amazinggraceprimarycarecenter.com
my.amblyoplay.com
angelatime.com
aymansaafan.com
beanar.io
beyondmc.mx
www.blauwevlinder.be
bmcacorretora.com.br
calloctech.com
rebuyonline-uat-backoffice.cbdata.sk
chatstats.org
vergissmeinnicht.cloudia9.com
www.datalabeling.eu
dimensiastudios.com
dosurvey.dospace.vn
aftermoney.e-faso.com
es.filledstacks.com
fineatix.com
fiuza.food
flowfocus.org
kubefrontendtest.fulminegroup.eu
app2.gestaotop.com.br
gorsebushstudios.com
production.goruckit.com
www.hiranyasolarpower.in
hirway.in
georoute.hughesbox.co.uk
www.joane-dev.fr
kandtconsultancy.com
kashvinora.com
kendecor.online
kendecor.space
kollectyve.com
lepetitmarseillais.in
lexoread.com
lifemock.com
linguevo.com
ltlogisticsgroup.com
mase.dev
maxihernandeznegociosinmobiliarios.com
megastarfootshop.com
www.mestr.no
www.mexperforadoras.com.mx
www.millenniumnails21.com
mind-recall.com
mishumaa.com
admin.momipoke.com
cybertadabbur.my.id
mypickmeups.com
mypiggi.app
neura-clinics.com
nodalbox.com
nygiantsfansplay.com
orangesoftwares.net
login.orbyfy.com
oryx.global
osteopatagaialazzeri.it
www.outlandersjourney.com
parlient.com
petloonz.com
micontador.poloivaz.com
quinielabadger.org
admin.rawalliance-om.in
app.rawalliance-om.in
rpwhiz.com
rythmy.me
www.sagomastudio.com
saudepromais.com.br
sf-labs.co
www.shilivai.com
link.shoppy.mn
spotvibe.co.za
stellvia.co
stumptownsupply.com
sumamachi.jp
www.tabtechnologylabs.com
technova-eg.com
tfser-ahlam.com
thepactapp.com
tradegex.pro
authentication.trunk.io
turbotoysandtreasures.com
uniquewalls.in
useroofbot.com
www.vazi.io
verify-credit.com
www.wdt.autos
chat.yieldpoint.ai
zdiac.com
Other domains in certificate