Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth0.skylet.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 17, 2025
Valid Until
February 15, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:D2:8A:2E:5B:64:F6:A5:0D:4F:69:6E:00:92:26:C6:04:63:5D:08:7A:AA:C1:75:1B:81:21:12:75:DC:27:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
demo.smartin-hclinicos.com
42bbg.com
abbsagh.com
www.abeonahealth.com
adwaitkulkarni.work
aereal.org
www.afilatenework.com
aireyumbo.com
www.akbalstudio.mx
www.alertevol.app
link.andray.xyz
www.axphone11.com
www.bakerycalc.com
create.beezer.com
app.besttracking.cl
blackhawkfamilydental.com
bluebirdconsulting.com.mx
www.brucedu.org
disneyclone.bryonymellett.com
www.bsidescdmx.org
pro.demo.busha.co
www.capps.store
www.carlfonri.com
carroceriasperez.com
cbiconsole.org
reyaz.co.in
www.coinwars-game.com
zenef.com.tr
web.cowcare.app
grain.croppaco.com
d-attitudewellness.com
davelombardo.me
digihealthpe.com
dixper.io
www.drincolo.com
www.drlukasrios.com
www.dwijainn.com
dylanvansteen.nl
www.dylanvansteen.nl
edn-ind.com
beta.ca.emce.dev
evernest.it
adoption.finkraft.ai
reports.fsfleetwms.com
get-tapp.co.uk
embed.goreggy.com
oldviewer.hausvalet.ca
herefor.art
heydia.app
staging.hodllabs.io
hpschrei.com
www.hrmnt.com
ieee-unm.org
dev.imalabc.com
jackel.dev
jackpantalena.com
www.jayohen.com
url-sandbox.joinsherpa.io
jstudiossolutions.com
khashayarkheiri.com
www.leochess90.com
litter-gitters.com
www.luckybots.us
mahrozet.com
kohlipeotter.mapleworkspace.com
bnq-cert.marxent.cloud
forland.meltoresprofessional.com
link.michaelsalamone.be
www.minimenu.app
minsiida.com
vue3-expense-tracker.mohammed-najib.me
mrndlab.com
www.msangrebostera.com.ar
mygradebook.online
nicktouchette.com
oshoy.com
aethersteel.pank.ca
peachringlabs.com
www.realbyteapps.com
www.revitalize.me
www.robert-roehlinger.de
www.saltybuddy.com
parking.sirancheevi.com
auth0.skylet.ai
www.sportsdatasolutions.co.uk
www.spyonline.io
bob125.stcmatara.lk
superstandup.com
invitation-service.test.tada.dev
talaveratile.net
invite.talkie.net
link.ticketdude.app
mariana.trade-design.com.ar
d.trusted-carrier.com
www.valk360.com
mobileapp.volvero.com
www.we4soft.com
www.wg5k.org
pos.yseer.com
www.zipship.in
Other domains in certificate