Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gwasp.hudsonbaycapitalmanagement.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 08, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
84:86:41:4C:7C:D8:1B:63:3E:01:81:25:3B:77:47:3B:B2:53:31:C0:13:CB:A6:B8:99:7F:BA:29:08:D4:27:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dev-admin-app.claimsync.ai
staging-admin-app.claimsync.ai
www.alunoapplicado.com.br
www.ambleteusois.fr
pro.apf-pooldesign.com
apptik.nl
askgodswill.com
fdl.bachelorapp.net
barisozcetin.me
www.bfi.org.uk
beta.bitebase.app
empresa.brendi.com.br
invite-dev.careease.kr
cestamehovnitrnihoja.cz
cityworks.app
web.co.cloudintercorpretail-dev.pe
nogaperetz.co.il
delightchemicals.co.in
dev.recommend.learn.co.th
www.coletteinova.com.br
app.10bet.com.gh
gallery.suzukibarayan.com.sa
digilink.vietcapitalbank.com.vn
loja.construindoosom.com.br
www.cursointensivodepercusion.com
www.dantiapp.com
dev.dataisgood.eu
develle.net
www.doubledragontpf.com
drewswinterservices.pro
www.electroera.in
code.entry.sh
faithnheal.in
fasty.pe
www.flutterlab.io
tierarzt.franz-spitzer.de
backoffice.frilah.com.br
gestaotesouro.com.br
glowtest.it
www.gudlaug.is
static-fb.hokkaidosm.net
web.moreapp.houer.com.br
hourday.io
gwasp.hudsonbaycapitalmanagement.com
www.industrylinq.nl
links-test.infinitemind.io
fm.johalternate.dev
keralakada.shop
www.kidzplanet.ch
www.kreditkarten360.com
learn.leadershipsolutions.nl
www.macengineeringct.com
www.maxcalculo.com.br
cdn.mehmet.contact
data.naxii.pl
auth.net3.is
www.notehive.app
rapido-baboso.demos.nuboservo.com
www.nysfl.net
thelosingside.paulglover.net
order.wokbar.preprod.paymytable.com
www.phasicharoen.com
www.philisaenergy.com
www.phoenixagency.se
admin.playhive.in
tupv.ptspec.com
simcrawl.quantcell.org
quizbuddy.tech
registrodigital.online
account.reliableartpatches.com
amazon.rgateway.it
hp.richard.dance
scalezt.com
seedauction.space
setlistpro.live
www.shahitsolutions.com
app.wis.sk5s.cyou
jupiterbuy.smeretailsolutions.com
namu-viewer.smingzzik.com
app-dev.sorafinance.com
staging.app.stalkr.film
suvoy.fi
bodaaguilarsalala.swanmoments.com
app.team369stake.org
theacademyplanner.space
www.thecaddy.co.uk
thethaothehevang.vn
tilix.uk
pep.minhacentral.trausedu.com.br
www.turkuma.com
www.ukrainify.net
vige.land
virtualtravel.tv
admin.wedzee.com
www.wifinfly.com
xinc.io
xr45labs.com
foodsensitivitymap-report.yourgutmap.co.uk
yurulabo.jp
zita.vn
Other domains in certificate