Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=priorsolution.co.th
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 15, 2025
Valid Until
March 15, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:81:30:4B:74:41:3E:BE:57:5C:C4:2F:A3:B1:A1:96:2F:7D:31:3A:8E:37:AE:4D:D2:E6:3E:E9:0A:EE:C5:F0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
comunicacao-develop.arco.org.br
www.pibcajamar.org.br
gps.a1sureja.in
alvarocastroleite.com
annualpredictions.com
www.aquaclique.com.br
arunprasad.info
dev.rerate.balbier.net
walletplace.dev.bcode.cloud
beautinest.app
bingeonword.com
boss.bisse.fi
www.burnhallhotel.com
www.cfsm.org
changewithus.net
clinicpeu.es
www.clinicpeu.es
www.caro.co.il
priorsolution.co.th
dev-okr.coda.global
att.lng.com.sg
akyoltemizlik.com.tr
www.corahsa.mx
www.criatoriojoaorota.com.br
www.crunchapp.co.za
cyberguid.com
www.dailymathsreview.au
www.dietspace.fr
digitalvini.com
www.digitalvini.com
dreamtrack.life
jab.ducklab.net
www.fistbumpscores.com
givehope.io
glashoresterlanches.com.br
deferred.glibl.fr
go-onyx.com
www.grandtriskelion.com
www.hask.co.nz
bre.hubshiftmanager.com
iannpena.com.br
www.ibcm.no
www.idyllicplateau.com
insta-solutions.co.nz
investmentoria.com.br
www.travelvn.io.vn
jdubbeldemanklusbedrijf.nl
bill.jewelrydepothouston.com
jontaehall.com
www.jsonviewer.tech
www.kalamesh.com
www.keonconstruction.com
editor-qa-3198.langsmith.co.jp
legalian.id
app.lideratech.com.br
www.localgems.co.za
www.lookmood.me
www.mashero.co.za
connect.mindoktor.se
mochidesu.com
meet.moeglichzeiten.de
1dchess.igor.moomers.org
www.motorsportndt.co.uk
dev.mycase.tax
naviofi.com
comparai.net.br
nexus-group.ai
www.nexus-group.ai
app.partyvibes.live
partyvibes.live
www.penjagaanprakehamilan.my
gallery.photoalive.hu
www.photoofjesus.com
dev.app.pinggo.co.za
cap.placed.eu
refer.prabhucapital.com
promolodezh.com
oud.prostairs.app
reservasmonacohostal.com
rootedcare.co.za
l.scenty.dk
scrunchicious.com
wsu.sesyme.com
www.siebetest.be
upzure.skillrefill.in
app.skwila.ma
splito.fr
judge.sponsorshipawards.ie
staging.dashboard.subscrib.ly
www.talent-ai.org
www.ter-mi-na.com
thequietpath.net
hello.tintum.app
www.tintum.app
tourcalltaxi.in
ulundi-independent-ondini-high.co.za
hangaarlab-dev.vsight.io
www.vulcanoexpediciones.com
fire.webgae.com
invoice.yourgutmap.co.uk
Other domains in certificate