Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=u.panga.tv
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:60:14:58:3B:5B:C0:68:28:6B:7B:AA:EE:8D:1B:4D:C8:7E:6A:67:54:DE:31:C9:CD:C4:F4:74:A1:63:CD:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
breadthfirst.studio
414cleaning.com
alpha-transport.jp
www.apijuridica.com.br
b2engenharia.com
mint.babyskulls.io
puttingyoufirst.bamideas.com
bucket-combine-test.bce.dev
bethrifty.app
bookformattingservices.com
women.bungtemin.net
camaju.com.br
dev.carestart.com.au
www.codepush.dev
onestudy-uat.oneclass.com.tw
www.sidc.com.tw
app.compose.ai
cyberport.in
dev.dldp.dena.com
detrumpez-vous.com
disfoil.com.br
dotpropack.com
manager.ed360.in
app.eezeverify.com
ezprep.ca
portal-demo.fuel.dev
bnk.gocad.de
www.gorytale.xyz
www.grossmeiseldorf.at
www.hashimukh.org
labeling.hobutech.de
hvsconnect.com
console.i-grove.com
phanpiscean.id.vn
inftech.vn
staging.ipdynamics.ai
j316.kr
johnit.co.nz
jriimala.com
kiosk.labrador.ai
interview.linescale.dev
www.luisburgos.xyz
lukascech.cz
staging-admin.lutzlotte.de
app.mamiride.com
firebase.markjonesvoice.com
aiden.martindigital.io
app.maximusint.com
www.meili-story.ch
www.mercimexklus.com
mindwave.studio
www.mkpcl.com
www.monitor-incardio.com
www.mossyvibes.com
www.mutant.wtf
mynde.ai
offonkyoto.com
offworldroute.com
mingler.onlykthn.com
fmabc.orchestra4edu.com
cp5643891906707456.order.place
cp5739815857291264.order.place
admin.ourdemy.com
u.panga.tv
persotypes.fr
www.pierluigicalignano.com
editor-dev.pixis.ai
plandeinfest.com
playquiznow.com
pokamind.com
poppiccamera.com
admin.prepa.io
hawk.processshop.com
quarpay.io
www.questionexistence.com
www.roservicecenter-hyderabad.in
play.scoorly.se
sharesinproperties.com
app.shipwithkam.com
smsbotu.com
snext.app
spbsg.ca
app.spirepos.com
www.storydna.app
customer.streamgames.tv
twf.suppy.app
syncshare.app
tabseguros.com.br
www.takmatiksarj.com
messaging.taliferro.com
web.teamdoctors.jp
thearc.solutions
thewhackycousins.com.au
www.thriftella.com
post.timeglass.nl
timelinehero.app
office2-dev.typex.kr
travel.simulator.unipla.app
macuilxochitl.vizion.app
xpartners.llc
Other domains in certificate