Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.didrow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 22, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:87:A2:99:82:E7:C2:F9:C5:DC:CB:15:BC:C6:0A:40:13:7D:35:92:58:A3:80:A6:38:BE:A2:62:7D:2F:63:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fidelitustransactions.com
office.1sttimesom.co.uk
www.aman-atisha.com
memberwebqa.angi.com
www.ariastec.com
www.assassin.company
atamawari.com
www.barrychusid.com
docs.cameron.rs
links.car.info
staging.open-us.cardiosignal.com
checkinevent.com.br
configurator.climatemachines.com
coderbot.tech
corkboardnotes.com
nlp.cothema.com
il.account.courtfilenowapp.com
www.cyclistsafetypatches.com
design-languages.com
app.didrow.com
www.dreamtv.mn
driverado.com
netrunner.edlb.dev
gruporoble.elequipoatomico.com
devinvest.elevationai.com
www.empiretruckingllc.com
www.ethbet.network
lernen.faqyou.de
fashonst.com
www.findefuchs.app
gdjq.foodle.su
www.forge.me
freeyourvulva.com
gargoyle-music.com
static.glimpseparentalapp.com
grocerxl.com
www.hecmapp.com
honeycombwoods.com
houze4upro.com
devpub.hvr.world
imperiovapeo.es
injusticebanks.com
insighealth.com
staging-v2.insightech.com
legacy.insighty.studio
integrationsninjas.com
jcamautosports.com
anime.juliotati.com
cyclone.jumps.ch
kemplet.com
khmerdc.com
register.knownuggets.com
kombooster.com.br
kylecubit.dev
laprecioussalon.com
www.leadershipboot.com
web-proxy.livekid.com
www.mdg-group.fi
www.mediatorsr.sk
mmxxemosworks.com
www.multiline-trading.com
nanisuru.online
pic-smoosino.mentor-stage.neccton.com
nickwarren.ca
procurement.nutiliti.com
www.opencollector.jp
ownrentkenya.com
www.panhouse.dev
www.petstar.in
www.progressivetuition.co.nz
www.qration.me
app.qualiscore.com
rattlesnakemilk.com
rdservicess.com
reefrevive.org
comunicacao.reinaldoalguz.com.br
s2n.ventures
platform-v2.sacurn.com
www.sagradalanzadaelche.es
www.seevoi.com
www.shoplocalmo.com
sntssseccion26tab.org
www.splendit.app
uplink.straylight.systems
www.stuccoplus.co.jp
test.app.surfpayapp.com
testnet.token10.xyz
tokyofrequency.com
www.triple-freezer.com
david.truong.vc
tryflyer.app
qa.turiconnect.com
twinscreen.app
twistedsolutions.se
dev.dhp.quiz.thrive.uk.com
www.viadellazzurrabeb.it
www.vibelign.com
cdn.fr.voxelmax.com
www.wordblitz.com
partners.zyffy.com
Other domains in certificate