Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=integrationadmin.staging.wallit.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E5:15:B6:EB:82:C5:C4:4C:19:E3:FA:B3:0E:44:12:50:9C:5E:44:C9:15:F5:7D:16:FF:CD:A3:DA:32:EC:55:8F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
colombomail.lk
antoniovampa.com.ar
goedenacht-staz.appdashboard.nl
www.arakis.ltd
areashell.com
www.augmentia.band
aocs.avicon.org
www.brianmoneypenny.net
www.buckyconverts.com
calliopetechnology.com
app.caremycar.com.br
www.cassidyweb.co.uk
backoffice-stage.citypop.app
classhealth.in
classreads.xyz
superbrands21.ynet.co.il
copyseo.ai
vivo.cotesma.coop
crea.ninja
stage-editor.createlearninghub.com
www.crews1972.com
crypto-tools.xyz
www.d3rriana.com
dadler.app
auth.darnd.com
firstunitedinvestments.net
pre-control.gcadscreens.com
gosurveasy.com
auth.greenlinks.app
gustavbylund.se
triggers.hypno.monster
app.infinityneuro.com
link.inishare.com
demo.invessed.app
wordscroller.jackfitterer.com
jointri.be
kailinjohnson.com
kiffgo.com
manager.komenteo.com
brainmonitor.alpha.konta.tech
staging.leanproduction.com
liloop.in
www.lizziegasson.com
ceob.m7s.app
makkan.trade
manushtitechnolab.com
markdgold.com
meetingstreetcapital.com
web.mnbaladna.com
www.mosaics.fm
forms.saas.nanosoft.co.za
napolski.memorial
ndaru.org
www.nflfantasyplayoffs.com
ny-maverick.com
nzz.me
onepotwonderwoman.com
www.onlineinsight360.fi
www.opengeometry.io
syncit.innoverse.org.in
pagemojo.app
app.petbey.in
pigonahill.com
www.ppfd.app
proguru.jp
rejuvice.co.uk
www.rivus-tech.de
dev.beast.rsldev.net
auth.smknu1karanggeneng.sch.id
elements.semmily.app
showbook.com
skride.no
smartsamui.com
studiojef.sogafit.net
sparkhubz.online
ss.house
studiora.co.uk
swiftinstall.ca
sylvari.it
ri.talentnow.com
taplsolar.com
golfsolitaire.games.tetherstudios.com
portal.theappmenu.com
thegoodprojxct.com
www.thesimpleclub.net
mobile.thetag.app
staging-app.tokkingheads.com
tombridges.dev
fb.torvgarden-tannklinikk.no
widgets.toureka.app
trackin.com.ar
truewebsite.co
portfolio.umangbhatt.dev
app.vibrava.net
www.volttisolar.com.br
controle.votei.app
integrationadmin.staging.wallit.app
admin.staging.wespond.de
es.workspace.training
www.worktimecalculator.xyz
Other domains in certificate