Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=getactively.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 14, 2025
Valid Until
February 12, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:75:DE:9F:F8:39:90:5B:F7:58:D9:A6:70:06:71:51:19:A0:43:9F:E9:BF:DB:3A:80:88:E2:AA:9A:B8:81:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
darkmane.me
www.abelgasque.dev
aidensells.fr
amarjeetpatidar.me
www.appnavigators.com
news.autosprink.com
www.bablem.es
www.baseonmars.com
bgpals.eu
waitlist.billbuffer.app
biosentinel.io
crm.bolichecostarica.com
cecilialindskog.com
instigram.cloudframework.app
df-eng.com.tw
cpnlagos.org
www.cpnlagos.org
cubiclabs.tech
danieldymek.dev
miskafa-privacy.desoft.vn
www.devlopin.com
www.dojacode.com
drarayanecesarioendocrino.com.br
resetpassword.ecopharm.nc
essenzialeconsultoria.com.br
fillmaster.app
florizstyles.site
fsavl.tech
gemslibe.com
getactively.app
getluca.io
gigikecil.com
auth.clicker.gir0fa.com
blog.guivus.com
www.hauntingtrails.com
www.inocuject.com
agricoontroller.insideapp.dev
mfl-wizard.insideapp.dev
admin.iorderai.com
jblee.me
demo.jobsify.ai
www.jonnymacmedia.com
expenses.josemgomez.com
kushkosystem.com
leeasiafood.de
lemartva.tech
stagingsyndicate2.letsventure.com
lss-portal.lexingtonsingaporeschool.com
lucaschen.me
auth.mabeck.me
manojs.space
www.martaidamian.pl
mtech-automation.com
murakamiclinic.info
rs.mytc.work
newdawnss.com.au
lamquangdai-admin.nexlab.tech
omkarbhat.site
web.app.onlylive.jp
ourvitaminc.co.uk
pantryapp.info
www.pantsninja.com
www.papeenvironmental.com
lidar.phiscan.ai
ctvm.qitech.app
quix.in
resilientbricks.com
link.rezid.net
colestuc.rgn.io
richendanse.fr
roadhero.com
www.spaceavocado.com
www.ssalvail.com
app.steppr.com
www.supgrup.nl
my-team-dev.svolme.net
swanepoel.dev
bodarigobertoymery.swanmoments.net
www.switchbacks.app
tafica.love
takken-tako.com
tcgroute.com
techeg.net
tenona.design
www.terceseht.com
express.testive.com
the-blind.com
theordeals.com
thepaintingdoctor307.com
www.tpscalculator.com
ufcgrill.com
stage.insights.thrive.uk.com
ulfexxproject.com
app.unsaddl.com
www.victorbrun.com
vikoperdefektbil.se
order.vocaleze.com
we-24.com
xbuyplanet.com
zetaresources.org
Other domains in certificate