Open
Cached
·
just now
92/100
SECURITY SCORE
Certificate Information
Subject
CN=blagoservice.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:C1:E5:E2:3A:54:2F:47:89:DE:66:E9:2B:5F:07:54:37:E7:A4:C4:94:85:7B:A3:96:52:83:7B:6E:B1:76:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Good
default-src; script-src; style-src; +8 more
default-src 'self'; script-src 'self' https://apis.google.com https://accounts.google.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://accounts.google.com; img-src 'self' data: https://*.googleusercontent.com https://lh3.googleusercontent.com; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://*.firebaseio.com https://*.googleapis.com https://*.gstatic.com https://firebaseinstallations.googleapis.com https://firestore.googleapis.com https://securetoken.googleapis.com https://identitytoolkit.googleapis.com https://oauth2.googleapis.com https://accounts.google.com; frame-src https://accounts.google.com https://*.firebaseapp.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
board-brawl.com
demo.actionbook.ai
aeglepro.in
assessment.agileai.university
harpia.altave.com.br
amsable.com
firebase.aquitech.eu
notes.auggiehealth.us
ww.autobid.com
avanti-untergriesbach.de
aventuri.my
demos.bambumeta.software
www.barjar.app
beeboyproductions.org
blagoservice.com
manage-feature-prod.captego.com
charlingtonhub.org
dealer.chekt.com
chepeparrilla.com
www.panel-dev.cieneguillariberadelrio.com
istmarina.cloudlabs.llc
sdesignz.co.in
wti.xpulse-cms.co.in
daydal.app
www.deepscoring.com
degreesofchance.co
ecoceptive.co.uk
eda.studio
elivenetwork.com
admin.fc-administrator.com
feyor.com
dev.financialmodelingprep.com
sveltefire.fireship.io
auth.freshpaint.io
gencurve.co.uk
gesticleanup.com
greenfeedingtool.org
cumin-emerald.harecord-dev.com
www.heartworktherapy.ca
portal.hiccup.com
hookaly.com
app.horseanalytics.com
howcookiescrumbl.com
ianseto.dev
sandbox.ideaverse.org
inviter.foundation
up.itgviet.com
javicres.es
product.jewemall.com
jjimovel.com
johnnymob.wiki
flynas-sdk.joinsherpa.io
journeytohired.com
jsohndata.com
kellora.com
www.kidslog.ro
lankarealty.net
lcollins.info
www.luxplusprotection.com
maccuri.com
www.madasamyadv.com
makemecolorable.com
marplebot.com
maruthimasalas.com
scan.menyja.co
minigameproject.com
staging.mixidea.org
www.nhseriesenterprise.com
links.observatory.academy
mahjong.octopusfantasy.com
oreuropa.it
www.otkupvozila.info
photodoctor.lk
car.takanome.pirika.org
plutosagt.ch
viz.photos.r42.ca
app.roamdevices.com
rpinvestments.ca
link.rugiesm.eu
rynamic.co
www.sacagrande.com.br
cv.sbz.works
search-rank-check.com
smart-check.net
smartouse.com
washapp.solyomsoft.hu
srpateljewelsart.com
www.staige.fr
admin.sunbears.com
temlo.io
tfshealth.net
thekiteapp.com
www.vacancytoday.be
app.vihashospitalitymanagement.com
village-pizzeria.co.uk
www.voicerepo.com
www.werewolfvalley.com
www.withexxa.com
irfan.work.gd
www.zproxy.info
Other domains in certificate