Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=app.hadronai.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 28, 2025
Valid Until
December 27, 2025
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:20:8A:F0:4C:7D:83:0F:5E:F4:AD:8A:2E:D7:9D:B3:E6:40:B1:8E:91:C1:93:19:3E:10:1A:7E:33:96:40:63
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dylink.lohaseyewear.com
adisanmetals.in
andrzejspostservice.com
www.annabeljefferies.com
ant32bit.dev
arrowwealthadvisory.com
www.ashutoshkrbhargava.com
www.autowass.ro
www.bau-spille.de
www.beatme.pt
www.beecityapiary.com
brammer.digital
brisasdelprado.com
conorlawlormurphy.com
contratosabiertos-bo.org
www.cryptorunup.com
cstnotes.live
www.danapravim.com
www.deineliga.de
denzelmensah.com
vr.disign.tv
www.elliottwitty.com
www.englaf.com
fasadyterasy.cz
fatihsanal.net
galaxypad.net
www.goblaq.com
almaty.mobilitymonitor.habidatum.com
app.hadronai.com
sellia-chat.heycenter.com
www.hoewerktmijnlichaam.nl
hotqr.click
imaging.studio
actions.instrumentive.com
jamieson.app
s.joker.li
kaituri.com
admin.staging.klarcommunity.com
upaep-pretest.klarway.com
kirjaudu.dev.lemonator.lemontree.fi
www.lucite-spirit-of-colours.com
weblink.magical.app
widgets.marketcheck.com
cn.marsstone.net
doc.mediadesain.com
micto.info
mintko.com
moonscion.com
websites.mustincrease.com
www.mysds.in
n-m.online
print.neighborbaked.com
360marche.nekodake.com
life.nt-me.link
www.nutrihabits.com.mx
okoplay.com
omarhurani.me
links.qa-summative.internal.onduo.com
opalith.co
www.mea.org.mn
phyzitalstudio.com
www.pixel-entertainment.com
www.poi-hub.com
paramat.produvar.com
rainydaysapp.com
raje3.com
ramses.dev
rawfatcats.com
stage.revenueship.com
refer.practice.rummytime.com
www.santasblotto.com
panel.scale-up2025.com
scriptbox.ca
www.secondkinetik.com
sgj-gems.com
www.shanakaprageeth.com
simbioxis.com
login-int.skykit.com
www.sparrownestconstructionsolutions.com
nxo-app.speakylink.com
app.storebuddy.dk
labyrinth.strannizza.eu
axiom.suitefeedback.com
app.tablacasa.com
dl.templapp.com
terashima.us
share.thebuddingtimes.com
thronefantasy.com
r.thursdayhq.com
www.todozero.com
blog.trueahead.com
verbums.vdoc.dev
www.verbruikskosten.nl
viny.com.br
weathertolaunch.com
www.weedydidie.com
woodedtrails.com
admin.goodlifec.wowdesk.jp
wudnberg.com
yedu.dev
Other domains in certificate