Open
Cached
·
just now
83/100
SECURITY SCORE
Certificate Information
Subject
CN=zavy.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 13, 2026
Valid Until
April 13, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
69:B3:AE:76:CC:B4:02:CC:8B:8F:58:07:3A:79:78:EE:31:65:0F:70:1B:F6:11:3E:C7:BE:3A:CC:D0:90:13:CB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bookworms.jp
pro.agrio.app
fitness.aidashboard.tech
app.aio-cloud.de
platform.aiot.no
ajezek.cz
www.allisonfang.com
altiplanoinmobiliaria.com
www.amver.co
ajira.amwatatech.com
www.andrewsequipmentservices.com
appleo.co
link.artistajobs.com
ashwanthbk.com
atlasvpnpartners.com
app.auralinkbuilding.com
awsnapapp.com
test.ayeq.io
pay.backyardstudios.no
www.badbitch-security.com
benjamincoutts.com
test.bepay.finance
connect.beyondreality.vision
brimwylm.com
app.chessgo.in
share.churnme.app
cidadaniaportuguesa.com
dealsai.co.il
saboogroup.co.in
www.a1carcovers.co.in
nasrullahpizzahub.co.ke
web.classifyme.co.ke
sipardy.coderave.dev
www.colinwhite.co
collegetown.ai
abbeylectalse.com.ng
www.by-sekerbaz.com.tr
conectafoot.com
www.platform.cybr.no
my.datatoolk.it
training.datavedam.com
www.emptyobjects.com
app.evnet.ca
bingo.fluin.io
ucb.fndrsng.com
www.goodplan.app
gotcha.asia
pay.wpay2.gr4vy.app
samea.haendel.dev
delete-me.hark.eco
www.harobox.com
hnasoft.com
presskit-pets.hypervr.games
www.icarushotsauce.ca
ikaconfort.com
chevxeron-stage-3.ischoolconnect.com
it-zero-ichi.com
admin.jstmahasabha.com
admin.julybiplobemeyera.com
kiid.com
www.kunjisoft.com
kuyawalds.com
pinterest.logandevelopment.io
produksi.lumbung.app
icons.m-link.no
medicalagency.jp
mikiberry.art
app.minahq.com
www.missesroboto.com
app.nakipower.com
dashboard.nepalmediagroup.com
nexusroboticsfoundation.org
ninazador.com
dynlink.offsight.work
complete.onboardapp.co
ivon.opj.app
pwa.dev.orderease.com
plugai.world
www.positioned.app
qashierordering.com
dev.recopo.info
www.dev.art.relyt.app
residenciavg.com.ar
rjporcelanatosrs.com.br
dashboard.snabb.xyz
staging.stylexplore.com
swifttms.cloud
app-link-dev.syodai-marugen.jp
szef-inspiruje.pl
tallycounter.click
www.tarkabit.com
www.udgoodlink.com
www.vikoperdefektbil.se
www.crm.vitaljobs.ae
www.voixman.net
link.vpay.africa
www.webbricks.io
wickedmainelobster.com
dev.app.wink.financial
zavy.app
Other domains in certificate