Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=teamplayer.autodesk.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 25, 2025
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DD:AA:BF:46:F2:20:79:AD:E8:56:9F:B6:4B:5F:E8:7F:EF:55:90:BA:CA:D8:2C:9F:BF:8A:6C:61:52:0F:71:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
characters.rpg.solutions
twitch.alcedogames.com
www.alhadiahmed.com
www.appalect.com
sheratonquito.appsiste.co
www.archiepumper.com
teamplayer.autodesk.com
www.bonheurmusic.com
www.brothoughts.in
www.cashpay.healthcare
chatfacade.com
ciastomaniak.pl
cnguyenjobs.dev
stories-dev.comobi.io
demo.csir.nl
beta.dealbinder.com
doi.homes
app.edge-gogreen.com
egortarasov.com
www.ellisarp.com
www.epago.hk
test.admin.falconcrms.com
glosolan.review.fao.org
app.flexforce.ai
demo.focoten.com
formaconsultores.com
www.formaconsultores.com
www.frankbotos.ca
app.gaminggoat.io
www.gdgpescara.it
glasswing.dev
gloverbamboo.com
data.honikan.pl
hxnarchitects.com
biblebooster-auth.ibep-staging.com
dev.idealcareerpath.com
ajgav.ind.in
ivannnicole.com
jakeslc.com
dev-get.jcuapp.com
testadminbahrain.jeeblynow.com
promise-test-cpc.clients.joinpromise.com
www.katzen-finder.de
kevinleyssens.be
kindrr.de
www.kkenterprise.co
lareciclat.ro
nujoy.leafb.one
lemonade.ooo
letsgosports.store
dev.medmeta.ai
app.meiliiapp.com
auth.mentro.tech
www.metalicassoneja.com
www.mizigsolutions.com
mockmayhem.com
www.moneysweet.app
jornada.mooneyapp.com.br
devfest2019.mscc.mu
mura-wallet.io
www.myhomeyours.com.br
neithlink.com
stg-gauth.nework.app
ntchuva.nickbarnard.dev
portal.oomphwellness.org
www.oraichainlabs.org
patchme.app
philipphaederli.ch
www.pixelentertainment.de
demo.platea.info
analytics.plentisoft.com
www.podspast.com
prctelescope.com
list.rahas.com
pristine.redmondlabs.com
ph-admin-staging.rida.ai
cadastro.rogeriossantos.com.br
saisamphyolinn.dev
sandalvalleymarayoor.com
links.selfsea.org
www.senzheng.art
www.shayak-banerjee.com
shuttergames.com
silvatime.com
www.smallbands.be
dynamic.smerf.com
softwareuni.com
sportstools.xyz
quran.suhaib.in
supriyagalbale.in
suruchiindustries.com
synergydevelopers.dev
pallet-legno.tacchellaflli.it
www.technokasim.com
www.treemuseum.ca
tushkallc.com
viewthekingdom.com
kanban.webhely.hu
www.wunderklub.com
www.covid19.zoiclabs.net
Other domains in certificate