Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=synthyfai.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:BC:99:FA:D1:B3:BD:17:5A:FE:1F:83:E3:08:A6:64:AA:02:22:4A:59:0E:B4:F4:66:F7:E7:2A:41:67:2C:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
comoui.kumunua.kr
www.1upmedia.studio
360talent.3diq.com
www.adviserdata.com.au
dev.ai-receptionist.com
wordcounter.alexyu.ca
cv.alirezad.ir
auth.appleseedplanner.com
www.arfniia.com
www.attractivesafaris.com
bedfordcircumcisionclinic.co.uk
www.blackewhiteparrucchieri.com
www.bookingspot.ae
www.carmelyonaportfolio.com
celnor.com.br
lavenir.certinergie.be
chiragtoprani.com
budget.chuotbeo8x.com
www.cloudfit.tv
app.co2e.vn
www.cocopure-nagi.com
codeblueapp.com
www.info.coinchecker.app
rp.com.se
www.rp.com.se
vmtsrevampv1-staging.carclub.com.sg
consultcusp.com
www.consultcusp.com
conversoai.it
www.cursivetotext.com
debsandtim.com
www.dhanai.net
www.discotext.co
uniben.hml.portalcliente.divitech.com.br
www.edplusx.us
colegiodrreichmann.edu.gt
edys-iot.cloud
eighty8fl.com
elitemarkers.com
ezrageller.com
direct-debit.v2.fastek.ph
fire.fawzstudio.id
filmnagartalkies.com
funkeycreators.com
gda.sa
www.gda.sa
gencoreai.com
gerardogameros.com
gettaps.co
www.goldpassbook.com
www.grupofuturo.net
www.guapassocialmedia.com.br
tenhagsancho.id.vn
vunghaoit2000soict.id.vn
ignitlab.com
iniciaaqui.com
auth.irfinder.com
jahidhassan.com
www.kodutara.com
dis.ksug.ai
kupopuffs.com
layerbaseprotocol.xyz
www.leadora.dk
meet.livomeet.com
www.lotusmileconsult.com
louisoftware.be
mamarepedia.com
marianaveiga.art
launch.masrunner.app
www.momentuminvest-events.co.za
www.motion-trips.com
muslima.tech
www.dullora.my.id
www.nomoka.app
sales.onfinance.ai
cloud-mgmt-modules.cdn.fed.apps.paloaltonetworks.us
wohnungssuche.pechi.at
planeswalker.org
bo-mn24.playatec.co
populer4dbelawan.org
www.primelens.in
pos.pubq.se
www.reserveren.restaurant
rivian.roboflow.run
bangalore.rrdroptaxi.in
chennai.rrdroptaxi.in
tiruvannamalai.rrdroptaxi.in
vellore.rrdroptaxi.in
wicom.semiicolon.com
dyod.srilankadiabetesfederation.lk
agencia-template.synergit.cl
modern-template.synergit.cl
synthyfai.com
app.thereisstilltime.com
app.typisgo.com
toonpixs.uphill.works
virtuallobby.virtual-brand.space
remeet.watakura.xyz
edge.webcat.app
yardadmin.com
Other domains in certificate