Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=forms.prolase-medispa.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E3:C9:FB:EA:F2:14:6D:DB:02:4F:66:B0:D6:77:5D:5A:EF:CC:B1:24:E2:2A:10:99:9E:E1:C3:B3:D5:7D:F3:23
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
carestack.com.br
10t.app
app.1ludo.in
stag-test.app.1on1navi.com
sku-blood-stock.aiblood.app
happeningnow.arcasoftwares.com
arhive.co
arvglobalcreations.in
dvi.dev.autoserve1.net
backyardfilms.co
www.behaviorhelpcenter.com
buildandmeasure.app
www.caargo.mx
www.zeo-solar.cadense.net
compersion.party
www.crayon.pro
www.cubenine.com
datawin-pronos.com
desurfbus.nl
devwallpaper.app
admin.hr.dfmg.cz
dotresidential.co.uk
popupondemand.easysignage.app
electronicsgarden.com
dev.eztrackr.app
admin.felicette.app
www.filiph.net
financebuddy.financialtravelbuddy.com
franksfootballstudios.com
freedom-x.freedom.to
genwave.xyz
staging-studio.getgalatea.com
giustoholdings.com
gkh.engineer
www.glenridgefaces.org
www.henrylawson.net
www.heyrobin.co.za
www.huntingtonatallah.family
www.idleelem.net
ileco2.pl
console.immigreat.global
www.immigreat.global
axle.io-things.eu
recipes.javatheory.net
www.joinwana.com
jornaldasnoticias.com
klimatklockan.se
www.knowbetterhiphop.com
kralj.info
laforce.lachevaliniere.com
www.letsmingle.us
levii.app
lightboxglobal.com
liuais.com
links.londonlibraries.app
www.marketplace.marcofailli.com
auth.marknadsinsyn.se
www.marynakisiv.com
moonshinevfx.com
www.mrgeoffrey.app
mims.mycosense.app
evento.ticketcard.net.br
newcastlescouts.com
newcrochet.store
nexusly.ai
oftow.ir
www.oilwellness.company
www.onetwentyone.games
signatures.patientflow.com.au
ufc.demo.pbj.live
onecoin.pe.kr
probellbi.app
forms.prolase-medispa.com
link.psiu.mobi
psycholog-bialek.pl
quizatron.app
riderepairs.in
jira.rit.services
static.sceneopsis.com
shababstyle.shop
www.shababstyle.shop
www.sinanamaki.com
sklb.app
www.slash-berlin.de
slyn.us
spendingspotlight.org
cardindex.stephenfrancis.online
www.szentpeterimez.hu
tesla-discount.net
therealvdevelopers.in
www.therealvdevelopers.in
www.tinkermachines.app
quanly.tlandkh.com
hiring.treadtransportation.com
www.vehla.org
auth.vigilantesdosono.com
www.chatx.vyeron.com
www.workinside.com.br
apolhygie.x-squad.com
go.yottapay.pro
Other domains in certificate