Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=walkin.visity.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:90:FF:8A:C5:A0:EE:33:E2:E2:76:E9:82:42:34:1E:98:69:7E:65:1C:21:CC:DC:0C:77:BB:BB:BC:79:80:60
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
boomiot.com
camping.adeco.ch
www.adriangibbons.com
ajette.ca
allinonefitness.ch
www.allmallsintheworld.com
activate.amsconnectapp.com
anchormannsharma.com
pokemon1.arenakouryaku.com
www.armys.xyz
asar.dev
bitfuzed.com
borgeapps.eu
www.breathelondon.net
cabexcargo.com
century-city.com
jacem.chaieb.tn
www.chatabox.com
auth-stg.chestmusic.com
educareer.co.in
app.stylec.co.kr
coopermexproteccion.com
covid19pandemictracker.com
www.daddyandkitty.com
www.daispot.com
damrad.pl
darksideof5g.com
dars2k.com
david-yu.com
defyprs.com
doughnutclicker.com
drewsdiabetus.com
editorialhonduras.com
exchange-eg.com
findverdicts.com
flashfishapp.com
flexon-tech.com
www.gardenpartyflorist.com
godalphul.com
vaamana.grainpot.com
grocereasy.app
bel-event-app.groupe-bel.com
www.guimpler.com
live.haiilo.com
shiho.himeshi.com
holoverse.dev
imaginationafrica.org
exto.infogo.com.br
www.inscept.com
instentconnection.com
www.itriedit.com
jarodriguez.ca
jasongin.dev
karentaxservices.com
keithloughnane.com
tonale-wallet-dev.knobs.it
www.lamalabs.io
www.languedocetancheite.com
www.lauracastaldo.it
lernit-performance.lernit.app
www.lihorne.com
staging.us.lunadiabetes.com
makruk.club
tiktok.mega.lol
metlapp.com
www.mexicantraindominoes.com
geotime.mmaeder.com
www.niklas-seeliger.de
container1.nynobo.com
orafinance.app
partyhuntnash.com
www.passportcannabistour.com
pave-the-way.work
ryanlewis.me
sbu-ezmaker.com
app.seedtospoon.net
sfduel-wiki.com
www.portfolio.shashikantjha.com
shiqingqi.com
soares-engenharia.com
app.solucionesrfid.mx
somerled.cc
www.somerled.cc
www.songcarousel.com
www.sphinxsugaring.com
www.sync247.net
tadevel.com
dellarocca.thetislive.com
www.udruga4lista.hr
dev.app.thrive.uk.com
www.venturemafia.xyz
hello.visity.app
walkin.visity.app
edu.app.webstrake.com
www.wgcvhoa.com
ni-cert.workspace.training
www.wpdistributor.com
yllasnorthernlightcamera.com
zao-lab.com
zorychta.xyz
Other domains in certificate