Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.lingualbox.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:3A:94:A2:7D:2C:A1:88:B8:F3:C2:62:A8:CA:9F:33:77:38:B0:FA:4C:1D:E2:27:31:78:BF:21:6D:8C:1C:D0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bemmais.omnisaude.app
bemmaisv2.omnisaude.app
careplus.omnisaude.app
conexa.omnisaude.app
doc24.omnisaude.app
emanapay.omnisaude.app
pasi-staging.omnisaude.app
pasi.omnisaude.app
provida-staging.omnisaude.app
provida.omnisaude.app
salvia.omnisaude.app
segurosunimed.omnisaude.app
somapay-staging.omnisaude.app
somapay.omnisaude.app
viventeris.omnisaude.app
www.acepmon.com
adriandiaz.dev
www.adriandiaz.dev
www.agriturismolacasina.it
www.amarti.info
duda.ampify.io
freightintelligence.ankago.com
auth.assinare.com.br
www.backendpulse.com
barerestaurantedoze.com.br
bbventures.us
link.bikaku-life.com
contabilidad-ledmon.carlosmontero.es
app.catassist.net
catedralcoffee.com
cetadcontrol.com
www.checkform.nl
www.cifrato.ai
citrya.com.br
lengpizz.co.id
admin-stage.dcart.pro
denisboulanger.ai
www.devyne.se
app.easysocial.io
marcas.liceosanjoseupala.ed.cr
www.dev.estomatolog.com
www.terran.eu.org
a0f6.foodle.su
gabrielaleopoldina.com.br
editor.genia.design
gis4schools.eu
gofastcargoandcouriers.services
admin.gravity-coliving.lu
growvity.org
healthysolar.in
www.healthysolar.in
www.hergesell.it
hirepix.in
hoangnd20215580.id.vn
link.in-time.hu
indeklas.eu
www.ipcchurchguntur.org
theme10.itsyourdayofficial.com
journeyloom.in
www.kappowapps.com
laborly.org
lico-shader.net
admin.lingualbox.com
ops.demo.listoglobal.com
lkarchitektura.pl
www.maidsphere.jp
app.tv.makesense.org
www.med4us.in
meltemivillage.gr
fire.mingleconnect.com
green-mall.molroo.com
estadisticas.municipaldemairena.com
www.muxgram.com
www.myrecoverytoolkit.ca
vts.magicindia.net.in
www.netzweg.de
niftyquant.com
nirogwellness.com
nstuttle.com
ogrupomais.com.br
app.openmarkets.london
phyo.work
ramtrix.com
royalcodex.xyz
sabinasialbert.com
fossil.shoffr.io
www.sonun.com.br
bodawalterynorma.swanmoments.lat
fpf.ge.sync4edu.dev
www.tamim.es
tdsbolton.co.uk
dev.app.traindoo.io
dashboard.trustmy.group
www.typingo.xyz
valentinaprinz.com
www.products.volkert.net
websler.pro
wedotranslate.me
staging.yama-camera.com
yonedax.com
Other domains in certificate