Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kisaco.neoufitness.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
79:52:A9:5F:45:B1:FD:26:C7:54:4E:03:04:53:50:A2:A1:E2:77:AE:FC:65:08:1E:22:B6:E9:CF:52:B2:C1:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
engage.ipra.voyagernetz.us
adamtsaidev.com
agenciaciclo.com
anandnatyalayas.com
aptndr.com
linoleum-public.bambuser.com
batuhanhidiroglu.com
blotch.app
boldambition.com
payadmin-beta.branchapp.com
shotclock.butz.st
dev-talking-talent.geraldeve.cake-lp.com
admin.cariocarp.com.br
www.chadleong.com
maskking.clau.io
claytonortiz.com
codexception.com
app.colvardlearning.com
blue-gryphon-system-admin.cpptl.co
greenfence-admin-staging.cpptl.co
cvivo.digital
cybrix.co
doggedlydevoted.com
duonote.app
dutton.com.au
android.earningsahead.com
ellingsenbyggservice.no
elmontuvio.de
www.endoscrining.uz
your.epap.app
www.epicbox.tech
consumer-promotions-fg.forceonekl.com
fracviz.com
eli.fundman.ai
www.gakal.com.au
garrettj.dev
app.gostream.co
gunpowderandgraphite.com
dev.admin.headmirror.com
www.holacampo.com
www.homereferhq.com
elearning.icsaacademy.com
ikloudforce.com
ineuroninfotech.com
reactwitter.jackyly.ca
jamat.org
joedarlingpottery.com
lyftdrivers.ca
marynakisiv.com
www.mattphillips.dev
www.metavis10n.com
www.mirdevs.com
mizeebimedia.com
support.momar.me
kisaco.neoufitness.com
appli-usager.neurowaste.com
performance.nextgatetech.com
www.nikkiyeboah.com
www.nokwandam.co.za
budgie.nui.care
nft.onnia.art
orsima.opzak.app
orderbuddy.net.au
mail.originalcoburger.com.br
www.p3solar.com.br
verify.app.pairtreefamily.com
menu.palatsi.com.br
bigshark.peoplegamez.com
nandawon.piticommerce.com
polexitpartia.pl
www.prairial.com
www.promo-tigo.com
sugaberrio2-admin.pujasweb.co
pureproduction.me
testnet.qbt.finance
corp.rili.tokyo
rodriguesprojetoseobras.com.br
www.rudydogum.com
cs.saleswidget.ru
salsabiila-kidz.com
www.smartcaptureapp.com
demo.smudge.dev
sophi-fy.com
starseaplanners.com
www.strudel.pub
aleixo.taf.net
tbrapp.co
stage.thepetdoor.eu
www.thisonetimeigothigh.com
tickaccount.com
tiktoks.watch
tldrworldnews.com
tro-crafts.com
tuayudacuenta.com
www.valleydevfest.com
www.vixar.co
wongcheng.com
www.xparis.ai
tac.xrverse.jp
www.yvonne-hegenbarth.de
Other domains in certificate