Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=dev-social.yumitos.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 26, 2025
Valid Until
February 24, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:29:4C:71:48:71:B3:F8:D9:06:08:E0:09:CA:67:76:CE:6E:8E:DF:94:D5:C6:CB:4D:FF:21:51:03:F1:8A:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-fgMGW6LrI8bufy4VCpbglA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
csworkindiapasswordreset.creatorofone.in
fellowes-product-config-test.3dcloud.io
devlink.dev.abrahome.com
www.aglae-nice.org
www.agroexportadoraperdomo.com
allevamentopreciouspaws.com
amanah-international.com
www.anoeta.nl
demo.atah.dk
awesomebaduk.com
axuremoval.co.uk
b-market.fi
blizzard.cash
www.menu.bloombawarchi.com
blouscrine.com
www.cam-resp.co.uk
www.care4up.com
www.certificatedecoder.dev
www.cilsbrow.com
hml.clozzy.com.br
meu.clozzy.com.br
donmiguelonqro.corntech.com.mx
coupepilepoil.fr
kik.csrbuddy.com
davidjsharp.com
dedolphins.com
dhakecha.com
dialrobotics.com
www.drivedly.com
homolog.unimedvtrp.drtis.com.br
dolmi.easyapp.co
x6lifmmro.easyapp.co
emeraldhummingbird.com
www.enl.kr
ethan-britton.com
www.examensvoormakelaars.nl
exionstudio.site
fifthmas.com
fogir.com
fse.ma
pilotage-activite.gan.fr
www.gismatrix.org
manage-dev.growflow.com
jey.gmbh
nc.jpos.jp
www.kafeenatedrd.com
www.kfz-sv-kuster.de
issue.kgu-syllabus.com
kpopdemonhuntersgame.kr
hanumpay.kro.kr
www.kubeguts.com
mylab.laboratorioclifford.com
laughtrack.ca
linckeo.fr
skf-enrolment.loophealth.com
www.lotushairandbeautysalon.co.uk
loudest-silence.com
makealoadout.com
medium.fun
www.mercaba.cl
mezcalstudio.com
millroadtraders.org
config.mobimatter.com
www.mockzo.com
modernway.ca
my-wish.fr
dev.mydevlink.com
www.nextbetz.ai
neyaatek.com
www.oniichat.com
pacpoststream.io
sandbox.dashboard.payos.app
perspectives.design
a.prop.ps
to.radiotoolkit.com
rchers.org
api.realsafe.me
refi64.dev
rightclickcompany.nl
www.rtfacts.ai
rvwork.com.br
www.schams.de
shipmentvision.eu
smartdata-sa.com
smiletime.com
sonianarayanan.com
classroomdesigner.spaceforme.com
writell.speakster.in
ss-hms.com
adventskalender.stadtwerke-sindelfingen.de
link.submoments.dev
dev.thelinestudio.com
trainerswap.com
explore.travelli.nz
uniteddatalabs.com
unrealvoodoo.org
visualization.gr
landing.wyvern.chat
dev-social.yumitos.com
www.zingchart.com
Other domains in certificate