Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=samitjsn.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 31, 2025
Valid Until
March 31, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AB:43:FA:07:D0:97:E5:5A:E5:1D:84:D7:E4:46:97:4D:6D:0E:2B:FD:D7:A8:DD:5A:60:12:AF:62:DD:92:87:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dgmads.com
wishlist.alenahuckova.sk
link.asanify.com
fitness10x.bionicintentions.com
dropesacv2.bitacoredev.xyz
demo-app.bluecomply.com
www.bruxkey.com
caruma.io
virudhunagar.yazhdroptaxi.co.in
aerialpropertiessolutions.co.ke
codexlab.co
ligia.datameans.com.br
davidcurry.net
distributor-next.decorum.work
ecobarometro.devsphereco.net
stage.dresez.com
ecshome.co.uk
www.egidion.com
incidentally-login.emerging-response.com
www.energiacom.app
eppo.xyz
qr.flashme.fun
fsxcg.co.uk
app.geonet.me
gertontenham.nl
www.ges1.com
app.getbilio.com
gideai.com
www.hayoona.com
headlessagents.ai
admin.highschool.my
www.hintprint.net
app-dev.historik.com
thuongnh2803.id.vn
api-dev.incendi.io
dev.indefinible.live
matchmaking.ivyrelations.com
ciufciuf.jokerzen.dev
organicfarmingtraining.justlearnindia.in
www.jutuksi.app
me.k2m.ca
webclient.kamformulieren.nl
kbedal.com
kold.dev
lifehealingprana.com
alva-d.m1studio.co
designer.maltopi.com
marcandrebr.me
vault.marcoluthi.com
marianalissageglamour.ca
milapizza.com.ar
cy-ecolededesign.my-memory.io
www.mycyclone.in
www.myfiniq.app
tutoria.navarrolajous.com
client.quickaid.optimasysdev.com
chocolade.ovdewisselborn.nl
www.pensioenbijvastned.nl
polyout.ca
www.poppic.app
affinity.portfolioview.co.za
www.proitsystems.pl
www.ps-c.at
quantuci.com
www.radio-activity.live
rainorshinemarket.com
reeleads.com
receipt.reveriecottage.ca
demo.rextrouvtou.fr
www.rileyparada.com
rodriguezdoceria.com
deckdesigner.rona.ca
samitjsn.app
geoclick.sayanmandal.space
app.sefil360.com
prodmediatrack.service-unicepta.de
sfx.rocks
web.shelterapp.org
siegerberatung.de
solarspark.info
soraypampahostel.org
edc.spacemaster.io
www.sterling-ts.org
stokedwide.com
thaythanhluan.com
thericeway.org
thewarehouse.dev
thisolddc.com
demo.ticketbuddy.in
sandbox.timerise.io
trustsbaloans.com
www.vandanapv.com
versvape.com
vgmarketresearcher.com
www.walkman.pro
www.wallofgain.com
recipes.yegle.net
meet.yourgutmap.co.uk
zachandnora.wedding
zasagtkhaan.mn
Other domains in certificate