Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=brainsync.levelupatlife.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 12, 2026
Valid Until
April 12, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:F9:33:D3:10:9C:D3:C4:8D:C0:07:52:F7:E7:54:31:79:16:1F:7E:FB:D9:1D:DA:D3:23:06:7A:0B:A3:F1:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cjad.me
www.a1soils.com
acceler-8.ch
www.adentroia.es
trader.altxafrica.com
admin.angel-list.com
app-dev-android.com
arheotech.tech
www.arnoldomuller.com
ascending.studio
biemmetecno.com
taskly.bitrif.com
bjasurveyors.co.uk
bleufi.site
bookerhq.app
bma-trainer.bos-akademie.de
boyington.dev
www.chevenansante.com
arch.cidec.ch
cloudhealth.co.za
cmglobaltrading.com.ar
programmingmentor.com.ua
notes.darpan360.in
auth.doradoclothingstore.com
helpmovelpiracicaba.drtis.com.br
dsoc.live
www.dsoc.live
www.eatfuturefund.org
www.egalnexus.com
engin.ee
fenerbahcevizyon35.com
ffi-firebase.link.test.fintechx.digital
www.flockfish.com
console.footsketch.com
fortalus.com
fruitsquare.ng
garnicio.dev
candido.gastrofusion.de
pay.sandbox.maritz.gr4vy.app
grandfunded.com
www.hichamhr.com
ias.mn
nguyenkhanhtoan.id.vn
inobi.ro
www.inobi.ro
www.jtschwartz.com
ka-beauty.co.za
gitstart.dev.app.konch.ai
lavend.hu
lehrerinassistent.at
brainsync.levelupatlife.com
logtruck.ca
magnetale.com
www.makarchandra.com
maken.io
app.mecimo.jp
meet2train.app
papaspizza.megapos.store
mekodrive.fun
udyogapp.melzo.com
apps.metehng.com
technician.dev.microwd.xyz
www.mikroticket.com
www.mladentesicart.com
mspyratos.com
muangyaekhph.site
yow.net.in
payment.nextline.me
link.olybe-staging.com
onbrd.dev
www.patagonia-soft.com.ar
pinacotecaprops.com
www.progettorinascita.com
queridopedroleal.pt
betaw.quicoo.com
reginacaeli.info
time-hub.salixhub.com
www.schoolsigma.com
www.seanmabli.com
shifana.work
www.shifana.work
shirdi-darshan-package.com
shramigo.com
11519999.stratics.io
streamnexus.streamgames.tv
suikodenchecklist.com
monarch.swifttms.cloud
t15g.nl
www.t15g.nl
talonsacademyeg.com
lrconsultoria.tec.br
theretowhere.com
timberstore.eu
www.tm-solar.com
cursos.traquisa.net
fb.triviaguru.app
valimismootor.ee
valiosaliada.pt
wesseljacobs.dev
cdn1.zerothreat.ai
Other domains in certificate