Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.fastgig.my
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:35:15:74:45:6F:32:64:BC:C3:7D:69:5A:2E:69:50:1F:B9:DD:63:B6:06:D0:E7:03:AF:8D:ED:6F:4B:99:35
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
evaluer.mazdadesherbrooke.com
www.alivetoworship.org
service.alko-garden.ru
www.alphabio-digital.net
app.alshalati.com
andymaclaren.com
www.angryjoesbbq.ca
taxcalculator.aronteh.com
www.asynchretro.com
ostca.backpackfordrive.app
badcss.com
bettercallsol.dev
login.bintango.com
api.bytecodex.co.uk
app.bytecodex.co.uk
devakumala.byvide.com
castcard.net
celorian.com
chipstream.store
codewat.com
www.colloidle.com
www.pacaman.com.tr
conceptree.com
www.cortellum.com
cotora.co
auth.q38.cyberhaven.io
www.cynicalmonkeys.com
cyphinix.com
dlpdemo.deloitte-audit-analytics.com
www.deviseops.com
to.dobleye.com
eaterymage.com
www.elevationhomeimprovement.com
adminer.enercon.mx
enerpayrewards.enercon.mx
estorealley.com
app.fastgig.my
fushagoya.com
galaxy-tale.de
getjuggl.com
getlegume.com
getmegaphone.com
client.getsafetycheck.fr
www.gom.digital
gpat-adr.com
grappex.com
helpimagine.com
ifororo.com
ios.imgur.com
intepro.mx
internetteapot.com
jacquelineho.ca
jakemotta.com
knkp.jp
utm.lapieza.io
leon-smith.co.uk
www.likhan.dev
crypto.onboarding.marlim.co
yc-paris.max-arnold.dev
www.mensh.app
mexedich.vn
live.staging.mikademy.ca
agustina.mouly.ar
discover.myrealfood.app
pic-skill-on-net.mentor.neccton.com
netmedya.tr
voting.noneho.com
occonciergedoctor.com
octps.io
app.orangeunisexsalon.in
www.paydocu.com
www.penduduk.id
qrapp.preprod-tastio.com
www.qadcebos.biz
rcvtally.com
dev.reach4help.org
rxlink.ca
www.scrolldex.app
app.sendbay.app
proximity.signal.bio
www.socialathome.ca
spintatrade.com
auth.spoutstudio.io
app-sugi.stailer.jp
www.sushite.se
core.swegaming.com
tapatapaatlanta.com
www.teddyfaleyindexcard.com
servicesite.staging.c4t.tetralab.tech
www.tourneesdesproducteurs.com
www.tru-bite.com
auth.validtech.ai
vcards.com.co
www.vdh.photos
vidofnir.art
vindhyaindustries.com
www.viridian.es
demo.visual360.no
schreibe.wanke.jetzt
documents.waterside.tools
Other domains in certificate