Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.citymall.com.mm
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:48:B2:1E:BC:1C:0D:BE:E2:D4:01:04:A5:D1:4C:03:75:67:E1:37:AF:36:6F:85:A1:09:82:CE:92:EE:05:10
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
espanolconpatricia.com
ping.28east.co.za
3ms-mali.site
a-tratter.com
abeshabox.com
adominguez.dev
adrianaenuta.art
layh-jobs.agentur-id.de
www.akiyamasho.com
alexyulejewellery.co.uk
alnst.cyou
www.amobilepro.app
aoiteppanyakijapones.com
www.artandall.live
www.aygwellness.app
baileybutler.com.au
www.belajarisme.com
www.bigtasty.app
binaryi.com
www.boa-soft.com
pay.c14.money
www.cadiviazadur.it
carnivorespotter.org
pokemon.chedeville.fr
kptrack.co.in
eastsidelivingmenu.villagecalifonia.co.tz
www.codju.com
www.codysnow.com
app.citymall.com.mm
demo.comovee.com
www.creativecinemastudios.com
dappfi.org
debabhishek.com
delautrecote-garlin.fr
www.dgdavia.ae
docode.se
dorleor-inceoht.com
d1-myreturns.dpdlocal.co.uk
www.dreamfrontier.com
old.eaglesecuritybd.com
www.earlypath.org
efinpro.cz
fisiolog.com.br
flaxboll.com
get.fuocos.com
www.gabbyasuncion.com
ct-staging.gestion-traiteur.shop
glaucolima.com
console.goclass.com.au
www.gradyhampton.com
haroldtourjee.com
openheic.inditech.in
www.inststoalanko.fi
www.jagomotor.com
jbio.co
www.johnwilliamspiano.com
kjpaul.com
www.konyataksioguz.com
krishnadev.info
auth.labnotebook.app
www.lizziebichardcasting.com
nongdan.loctroi.vn
lovebarrel.org
mahavirashokjewellers.com
www.manugoel.com
www.masakazumorita.com
member.mason-fifth.co.uk
mesbro-images.mesbro.in
appli-decheterie.neurowaste.com
link-kayros.nibo.com.br
www.okouran.mu
aerorite.asata.pe.kr
www.pintuairtronics.com
auth.dev.pomelloapp.com
www.primedroptaxi.com
quesync.in
portfolio.raviqqe.com
www.rodrigorosario.es
royalnailloungedacula.com
www.sawyermusic.com
manager-dev.screenlime.app
examai.skillupai.com
somvista.com
returns.sparvaccessories.de
www.squadfeedback.com
join.subspace.money
www.talbotracing.ca
www.thearpit.in
timandrisa.com
home.ubutouch.com
www.useaccord.com
ustemofficial.org
venturemafia.xyz
waywaystudio.com
colopl16th-pre.webmetaverse.jp
www.wesmarks.art
app.wespond.de
auth.workplacely.com
yamaguchikarate.in
www.zertthecreative.com
Other domains in certificate