Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.beta.seenka.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 02, 2025
Valid Until
January 31, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:64:81:CB:22:AE:DD:3C:1F:7F:62:E2:C5:8D:E8:D5:DD:46:41:29:BD:2C:52:2C:AD:F2:30:DC:69:34:BD:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
earthtimelines.com
9kopb.ru
www.abmdist.com
app.ahlanzoom.com
www.apexsgi.com
www.aprar.cz
bafca.athleteera.app
ai.axenetit.com
beatstrings.com.br
client.link.bukest.com
www.buyit.ltd
bynanex.com
gcp-us-east1-09.dev.app.carto.com
sandbox.certicraft.com
www.chauhan.nz
clusterbeep.org
www.colurwish.com
costareal.com.gt
comingclock.com
www.cortinasrollertech.com
creatutorneo.com
cuteprint.in
www.d3rivr.dev
demircibelgelendirme.com
dronepilotcanada.com
www.eureciclo.eco.br
energy-alix.fr
www.ethan.page
utb.ezapys.com
www.flowganizer.com.br
www.funkyfata.ch
rich.gocad.de
citricos.grinboss.com
house-bud.com
hvaq.in
black.i9tecinformatica.com.br
www.icodeup.com
elearning.igeddit.ca
app.illmaticservices.com
freedom.impactwrap.com
ingratexr.com
admin.inmozuniga.com
www.israeli.deals
jaisonpharmaceuticals.com
dns.jguiza.com
www.jncrealestate.ae
www.jsite.dev
app.karus.ai
la-maison-d-annie.fr
labeledgreen.com
demo.leadlabz.co
mta-sts.linjacobs.dev
link.mabonnefee.com
man-transport.pl
mariwaki.com
front-dev.meetinganalytics.com
www.memberkard.com
merchari.bike
www.micesmart.events
lp.mintice.net
lkpdasrh.my.id
nasthetics.com
nhg.ch
nvin.in
services-mht.ny-go.org
onemewebservices.com
dev.parry.dev
peakbit.net
beta.pedeomenu.com.br
plumys.fr
fourinarow.popoko.live
celerity.portfolioview.co.za
chrome.portfolioview.co.za
www.rebeat.io
rethinkreading.app
receipt.reveriecottage.com
ridloncmr.com
rmpt.dev
sabzeefresh.com
staging.beta.seenka.com
www.shematera.net
sourcesweep.com
talkcar.fr
www.tarunaru.com
team2020.org
tecblic.com
hotels.titanurban.com
clarity.tqi.ai
commander.triangula.com
tricerato.com
truthseeking.one
ubt-epstesting.com
varsityclassactionsettlement.com
verifico.co
vidaimoveis.com.br
steuersparcard.wehri.app
support.xikrit.com
xservere.com
yourbrightsteps.com
zennetaler.be
Other domains in certificate