Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=catalystinfomedia.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 01, 2025
Valid Until
December 30, 2025
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:D0:DC:59:54:A4:C8:FD:5D:FC:9B:6A:83:14:B1:EC:DB:E5:73:3A:53:5C:A6:2B:E7:A9:7A:69:48:19:6E:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
card.date
cliniq.algojaxon.com
www.andrealopezsantos.com
www.apostoliceritrea.org
app.apscourierltd.com
www.argue.win
assemvia.com
auraexperience-photobox.it
app.autismore.it
www.autogofit.cz
www.awmeducationservices.com.au
basolnakliyat.com
dev-sif.bms.vision
bodrumkorkuluk.com
boleron.eu
docs.boomerangapi.com
camo-cafe.com
catalystinfomedia.com
chechoit.com
app.chennaihost.com
harsha.chilukuri.in
coderock.com.br
grillix.airnet.com.bd
listifyapp.com.pl
conversation-ally.com
www.dclgenerator.com
designerdeveloperduo.com
www.dessertissime.fr
www.dessin.it
www.dice-studio.fr
www.dineoneone.tw
dirtyhands.ai
doitmgs2025.com
sharelink.dragonmaster.co
dynaxianloop.com
eespire.eesoc.lk
docs.eighteenpixels.in
support.enhearten.io
entmit.com
escortservic.org
ezpzvid.com
sso.frontend.la
strefa.gree.pl
www.hackin.wiki
ibrahim-elouadifi.net
www.ibrahim-elouadifi.net
portal.icelabz.co.uk
bestpractice.immodigi.app
casadapicanha.infinitifood.com.br
javascripttraining.ie
justanothermap.com
jvmcarmotors.com
www.kamieniarstwo-grabow.pl
kitkal.com
kokafood.com
kwikmaths.com
maruthi.builders
mastercontrol.mastertrack.com.br
mateusspinelli.com.br
mesbro-subsidy.mesbro.in
link.meteomedia.com
admissionado-ug.metis.club
voxl-flight.modalai.com
mt-inc.co.za
api.mybeauty.place
guest.mysmartlox.at
appconsultoria-hml.natura.com.br
sah.org.in
otaku.group
api.ourlinq.com
tos.penguinpass.it
app.pontogo.com.br
public.prodiversapp.com
stable.psalterapp.com
pwafire.org
api.quey.io
fb.quitaboletos.com.br
lendingdemo-dr.r-stack.jp
rayarc.in
apps.ronanfuruta.com
sandrapoll.com
homologation.dataflow.sellersflow.com
slyde.io
appbuilder-demo.softcrm.ro
www.sushibelgium.be
blog.threepings.com
mobile.toysandcolors.com
www.uifaces.com
viedemedecin.app
vinzoom.it
app.voicevictor.com
vrazavr.com
preprod.watsonjonesleather.com
we-build.city
staging.weflats.com
zet.wize.pe
www.wtfcarnival.site
x4prodchart.com
tz-bordeaux.zenika.com
demo.zerotoapp.com
Other domains in certificate