Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.faruv.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:07:D7:0D:60:A4:84:76:32:52:AB:1D:59:8B:11:B0:A2:A7:34:09:7F:EF:16:1F:E2:02:07:73:1C:0F:C9:32
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bodamariayjuanga.es
egg.8ducation.uk
link.aaihc.com
askify.video
banyan.eco
board.bb4k.co
app.boomshop.io
portfolio.mathieu.bourgois.dev
bpa.mn
braviontech.com
cdcanillas.es
celekt-admin.classet.in
indiaelectronics.co.in
www.colgatecamps.com
mobile.solar.com.pl
cdn.oci.com.vn
computerweetjes.nl
www.crmthermoply.com
comosoco24.daeh.info
www.dannysmoke.com
web-sporter-frontend.staging.leiden.delcom.nl
web-sporter-frontend.staging.ua.delcom.nl
link.delli.market
deover.com
www.designweaves.com
doorclosers.info
dotnotation.site
www.ventes.dynacite.fr
go.dynamiq.com
www.egosaautos.co.uk
faith-promise.ethane.page
eunoiaworkspace.com
staging.faruv.com
www.freshprojects.nl
gamba.land
business.getvany.com
www.gjselectrical.co.uk
app.gobarefoot.co
demo.property.guestgenie.com
demo.provider.guestgenie.com
staging.heob.de
holysmokes.gg
hovietmanh83.id.vn
etenbij.impeesa-zoetermeer2.nl
www.iranzamin.de
www.iriskingston.com
paciente.jairopoveda.com
join.karigor.org
www.kineticscapestudios.com
zeroday.landlele.com
admin.dev.lensbook.com.br
legacy.lindner.top
misekachi.jp
app.mojtrening.rs
igtarot.moonlight.world
symbol-fest-market.nemtus.com
www.neovoice.io
nextbyte.wien
nkeyes.dev
www.nmoverseas.com
www.norrlandshunden.se
www.notebird.school
dev.app.nther.io
driver-app.icam.nuvio.co.za
otticaventuno.it
paragon.plumbing
pensabene.eu
www.per1customers.com
app.policyconfirm.com
emuvaapp.propertywallet.co.za
push.gives
www.qisy.se
mff.ralek.art
www.refrielec.cl
restaurant-1.return-value.hr
www.ridpodelivery.com
rooted.today
app.salut-app.at
www.snaghaven.com
softblockrefinery.com
developers.speedychui.africa
array-functions.szabonorbert.me
beta.talentpromatch.com
research.ticktalkto.com
interview.verity.tinyteam.co
admin.tipsi.org
triple60.de
auth.tryvmail.com
undersoil.co.jp
velvetmooncoffee.com
app.virtuamegastore.com.br
voiceofthewild.org
coach55.whatsscore.com
app.zigazoo.com
blogs-template.zynetra.com
company-template-1.zynetra.com
profile-template.zynetra.com
restaurant-template.zynetra.com
restaurant-template1.zynetra.com
saas-template.zynetra.com
Other domains in certificate