Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.golujo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
17:27:2B:69:4F:59:D1:93:D5:9A:FD:63:54:48:AF:97:15:10:B3:C3:6E:64:44:45:C1:6D:2D:A6:95:12:5C:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
events.appquick.co
random.actinarium.com
www.adminjs.co
aftamayo3.com
ago-construction.com
aktmodell.rocks
staging.alinocam.com
www.altman.ai
aluminiumwindowswarehouse.com
andreaszabo.eu
arshwindenuevlal.com
mta-sts.avaitrust.com
trial.bigdreamboard.com
www.birdhabits.com
www.biswanathsahoo.com
bonnagro.com
cajaguapa.es
calisthenicschicago.com
cindyxwang.com
admin.cocoagh.com
simplecomplex.com.cn
www.iass.com.tr
links.mymoji.com.tw
go-test.cosmicrewards.com
www.curipha.com
www.digitalgardens.com
dinakara.in
fabricodes.com
link.feelsart.ai
app.dev.fejron.com
frenlydogs.com
www.frogg.io
giantcat.dev
gogdl.com
admin.golujo.com
admin-compraja.guararema.sp.gov.br
app.housegate.jp
events-crm-demo.hyreo.com
p78-staging.interviewui.com
props.jasonbosko.com
www.johnterry.com
www.jomarhan.dev
www.cms.kekomo.es
kirkleeswelcomes.org.uk
trichy.kishoredroptaxi.com
connect.awheels.kitloongholdings.com
kds-sandbox.klover.app
portal.kriyaaqua.com
lambdaedge.co
tariff-mgmt.ltl-xpo.com
dev.lucky-strike.cash
www.madmathtech.com
mailguru.io
miimo.ai
export.minkauntobis.lv
www.mintlio.com
navisaviapp-links.com
neeftee.com
neue.red
nibo-logistics.co.za
nikafoundation.org
autotest-web.omnicurenow.com
lsb.ge.orchestra4edu.com
ctccollege.org.za
www.ourcardgame.ca
dynamiclink.passbuy.com
peterperezjr.com
www.planohop.com
www.pluma.cloud
www.potenschecken.se
payments.pubq.se
va.querypro.io
app.rad.ca
release-manager.renoworks.app
partner.scholarly.africa
coyotes.seasonshare.com
www.seedblocks.com
setupai.ca
www.shiftinghorizons.io
smartinspect.ai
smartpages.gr
link.soart.ai
www.spinndrink.com
spoxie.com
squaregofilms.com
www.stachetracker.com
style-moods.com
qms.taigmaccarthy.com
te-reclutamos.com
www.televinduadmin.app
link.tetherre.com
thathanur-anjaneyarkoil.com
thebaycoco.com
auth.tracksy.ai
join.tradytech.com
www.tsamakos.com
www.villabaline.com
willjguo.com
video.workshop-live.com
yawtllc.com
Other domains in certificate