Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.simplevisionboard.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6F:79:96:8D:6E:C4:E7:18:EE:2D:36:26:7B:82:13:C8:B5:52:E8:63:9D:36:81:F2:47:4F:AB:C8:A4:DB:80:07
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
chrisishida.com
421soho.com
sponsor.accountancyawards.ie
app.agroticket.com
alexbainbridge.co.uk
telus-poc.anagraph.io
go.apif.app
asad-dowling.com
verified-qa.assetscience.com
jobs.associazionefelicidad.it
boardingpass.aveloair.com
test.backspace.tokyo
bastaasi.org
www.beckmannacoustics.com
staging.beereaders.com
bencarrental.com
brinsurtie.com
admin-fintechwiki.ccaf.io
www.cenitium.com
claytonwingfield.com
publishares.co.il
www.5gpower.co.in
www.pradeen.com.np
conciertolive.com
app.cornerbarberhouse.com.au
www.dailypickem.net
qa.app.dalala.app
danfiumara.com
coworkers.davidecampello.app
desertpatrolmen.org
www.doorbale.shop
easyroutes.app
skyltplus.easysignage.app
shemsperingathur.edu.in
eg3dprinting.com
jokisch-fluids-mischungsrechner.enra.app
plus.staging.fitkit.app
fivetastes.ca
www.fluid.homes
fortemchem.com
dev-api2.getintheloop.ca
2dspine-contryside.globalsoft.games
goodluck.supply
controlpanel.grupobarco.mx
lakshyaonlineclasses.indiandevelopers.org
hashtag.influxio.com
www.isnottv.com
johnnym.tech
www.jack.joynson.software
www.le-an.org
logitanalytics.ca
stg.machitan.jp
md-pwa-weather.mohammed-najib.me
morchard.ca
mpbcurtis.info
app.newslit.co
niallbeard.co.uk
status.nival.me
lalamove.ohmas.cc
optimumonline.se
orderandeatnow.com.au
www.oriaskep.hu
stm.texbit.otobit.com
bootiqio.parkalot.io
www.pettanko.win
pledgeclub.org
poolmatch.app
lionroars.ratality.com
www.rattidisentina.it
weather.resende.app
app.rotaz.io
www.saascalc.app
cs.salem.edu
cwb.salem.edu
music.salem.edu
quest.salem.edu
sustainable.salem.edu
sanke.si
mobile.simple-spot.biz
dev.simplevisionboard.com
pay.sjc.co.za
www.smartcities.pe
southmoon.co.za
www.speakenglishonline.app
app-staging.ssgyms.com
www.starseaplanners.com
julasoft.steplix.com
sylvus.org
tagyu.cc
www.theflyingrooster.com
galaparol.thefuckingfatcat.com
app.truster.works
www.tzager.com
ceto.us.com
www.wattion.es
time.we-site.de
www.wolmultiply.app
lonewolf.yienyien.net
www.youthandfamilycasa.org
zephyrworks.org
Other domains in certificate