DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=dev.pwa.matthieumontaille.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 28, 2026 66 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:0E:71:06:5E:60:A7:02:7B:3D:1D:27:5A:D5:80:64:BE:08:48:46:C9:33:F7:B4:C2:3E:7A:5A:8C:56:BE:12
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
chiendezign.info

Other domains in certificate

aegisxtechnologies.site
fete-de-la-musique.afterlife.ovh
alberodimais.it
white-pass.get.alpinemedia.com
processmap.aplicapps.com
www.appblender.me
workspace.atrena.net
beta.groups.awr.org
blapointe.com
tilematch.bombayplay.com
l4.capstream.app
www.captexcruisers.com
carlaperezactriz.com
cimplybestdemo.cimplyfive.com
students.claire.school
adyks.com.tr
beta.datelog.site
ddclothing.shop
tracking.digitalrocketship.net
www.dktgames.com
www.dlm.rocks
edu.edcan.kr
engineers4u.com
app.esenco.com.co
eventscaff.pl
app.fotodemarca.com.br
www.fukuwa.fr
getrosecoloredglasses.com
www.glaubensfutter.de
eva.gmarineinnovation.com
gogo-violin.com
autos.greensprout.com
go.gymondo.com
www.hdeapp.com
healingheartcommunications.com
link.henfmakelaardij.nl
ths-iot.hjsrlabs.com
dlinks.eotest.iot-nttdata-sbc.net
www.jackslattery.org
kikel.jp
www.kkcabinets.ca
ve.laboratoriodentalsalva.com
laracunha.com.br
laurencewelch.dev
verifyme.lifelight.foundation
portal.luqra.com
dev.pwa.matthieumontaille.fr
minasantigas.com
chips.moritzdietel.com
www.moulindesdesniers.fr
myco.ink
pic-alc.mentor-na.neccton.com
newwavy.kr
nexasmartscreen.com
auth.nodezro.com
backoffice.mpro-dev.nos.pt
oamaru.com.br
admin.omotenashi.ai
app.onemagicschool.com
www.peakspace.ai
www.webapp.pikkopay.fr
vision.praanav.in
promptpolo.com
www.app.proscalar-go.com
app.protofleets.com
www.purbr.com
admin.quantix.systems
radheckaa.life
www.rennes-services-plomberie-electricite-chauffage.fr
www.rezurv.ai
ridekeluh.com
rizwaniqbal.com
ryseeng.com
www.sacareplus.com.au
www.sadullaev.com
screendead.com
shahirghani.com
smoothkeyscroll.com
solrio.com.br
admin.boulanger.speakylink.com
showroom.spicatech.dk
links.sprive.com
sqoffs.com
ssig.app
stripesaas.com
kumamoto1.tabingo.com
tabletop-helper.com
tabtidyllm.com
tangomarkets.com
tippycountyconnect.net
uat.cloud.tracplus.com
www.transparentnotes.com
www.ttodorov.net
www.twogirlsonesofa.cz
unionwise.co.za
docs.universalid.app
go-dev.urbanteam.app
auth.variable.app
ehr.vitaehs.com