Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bedula.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 02, 2025
Valid Until
February 01, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
39:FD:8D:98:FA:22:28:0A:68:AC:82:03:37:C7:1D:0B:8B:D4:3F:F9:19:0D:D2:8D:A0:3C:5B:0C:AA:2F:51:E5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bastionshq.com
www.a2mediaworks.in
andresgarcianavarro.com
app.any-mal.com
aquaharmony-fiberglass.com
www.attendi.ro
badreddineabba.com
bedula.dev
qa-teacher.beereaders.com
profile.begrateful.org
berkayturanci.com
bezyay.com
www.bezyay.com
bitbungalow.com
canary.admin.bluechew.com
app.boomteam.ai
aisha.buttonox.com
bv-app.nl
admin.cannonlaunch.com
www.carolinebanville.ca
cclwhitelabel-login.chatleadspro.com
app.dev.chekhealth.ca
chriscanin.com
cloudgantry.com
process-builder.commercial-tech.com
controlworksbas.com
www.cryptoklerk.com
web-uat.curtisapps.com
dailypostbeat.com
danielhart.ca
dereknewsom.com
www.digitsmobility.com
draconianmarshmallows.com
www.drishto.com
links.earthcubs.com
app.experiencenano.com
dev.fixarservice.com
13cabs-business-test2.fleet-dev.com
13cabs-traveller-test2.fleet-dev.com
flipcoinlaunch.com
www.floridalawschoolchallenge.com
fmcentrolevalle.com
siriuscore.fonyou.com
gamewinners.app
blindtest.gcbx.fr
gensocial.app
www.gettravisapp.com
goddessofqueensmusic.com
goodfellasbarbershopinc.com
partnerwith.groovetechnology.com
tenant-dev.growflow.com
hannhyz.com
www.iamprolog.com
help.influxapp.com
invid.com
marketplace.ireasantiago.com
iso8583tools.com
www.itsyouritpartner.com
jarjestysmiehet.fi
www.justdrinkbinge.com
kalpatechllc.com
www.kasemyassine.com
kleezo.com
lumbungkasih.com
magomezawaseikotsuin.com
app-staging.medzy.ca
app.midwestuastech.com
netrics.net
nexqlo.com
nightcoffe.hu
nynobo.com
mariapolisco.focolares.org.br
drivenscan.pdr.cloud
www.qualityconsilium.ca
buddy.realmendontporn.com
aoaweeksurvey.realtimeknowledge.com
webgl-test.rescan.us
pitch.rive.app
flashcards.sleepingmonster.dev
cfc.smartviewmd.com
swingset.sorav.it
www.sorbydata.com
link.staging.spring-market.com
sunday.fitness
product.supertone.ai
swaptin.com
tasquet.app
www.themangalview.com
theopportunitypipeline.com
www.thinkapart.com
www.thoulessart.ca
www.truesoundlive.com
link.dev.trustidiom.com
www.upliftnow.net
vantekgroup.com
versaclinic.app
www.volimsokobanju.com
cdn.xorlabs.in
telegram.yline.app
ysgarage-info.com
Other domains in certificate