Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=conseq.cloud
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:DC:56:CC:EB:2F:AE:99:E0:67:F5:B6:94:2B:2F:4C:1E:10:BC:1E:CA:10:50:5A:A4:32:70:90:3A:34:D9:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
desktopapp.bizopsapp.com
konami.12traits.com
aeroguard.app
alllocal.de
ampiaiset.fi
www.angelists.com
aesoccer.athlete-era.com
athlete.athlyts.com
ballstatesportscamps.com
editor.bernd-heidt.de
www.bileier.app
bimbacher-geschichten.de
binfieldkitchen.co.uk
bnlink.app
briangi.com
caos.store
copiloto.carecode.com.br
chamaraabeysekara.com
conseq.cloud
cookieless.coffee
cortyx.com
www.cosmoscode.com.br
www.cristianelias.com.br
www.enfochannel.com
espaconatalia.com.br
explorza.com
faroshipping.com.ar
www.find-my-friend.app
www.follow.design
demo.funrewards.com
www.furqon.app
share.gritworkouts.com
gscmaintenancecmms.app
app-dev.herescreen.com
bubo.icsecurity.com
www.innocard.digital
www.invent.ly
isimbulucu.com
tictactoe.jackfitterer.com
jadeandrose.com
jamesrnorman.com
clothit.jeanhumblot.dev
jesusjonesfinest.com
www.jfem.com.mx
pmp-webapp.jtask.com
www.juliodrf.com
dashboard-beta.labme.ai
account.labolive.com
deviceinfo.lirumlabs.com
listnow.app
www.liveshowcalcadosbeirario.com.br
clientes.lucro.com.co
luizagarofalo.com
referral.makromusic.com
masteemoji.com
matthias-ellmer.at
mendeljacks.com
mersinhurdapoyraz.com
www.msbs.app
my.mueblesdimmsa.com
nextyears8manleague.com
www.nj2nyc.com
norsepm.dk
occser.com
sin.org.in
oscleton.com
www.palacio.top
kift.partnerhub.co.za
pawpia.com
percula.dev
www.promounters.com
www.psaapp.com
www.pyrusspa.ca
qapp-admin.qallta.com
platform.quickprotect.com
dev.dashboard.qvin.com
rashtriyanavachar.com
readinglists.app
nils.rebel.no
rentle.co
www.rierson.com
booking.royalhaircare.lk
singinglessonssouthampton.com
slidescreate.com
spiceauntie.com
splittaxpens.app
stlbaseballismscratch.sqwadhq.com
sribalajibuilder.com
portal.swimtrack.com.br
tamim.es
www.taohuang.life
help.thoots.ca
topicoscr.com
bcratrg.trokic.tech
firebase-sso.staging.vector.ai
www.weekendonna.it
widgetbuilder.dev
app.wingmanlog.in
inglestodososdias.wordtris.com.br
fep.xptoconsig.com.br
Other domains in certificate