Open
Cached
·
just now
80/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gamekoda.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 01, 2026
Valid Until
May 02, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5D:A7:67:6C:D3:1D:7C:48:D6:81:32:14:87:0F:2E:62:20:28:2E:5B:FF:52:32:19:BB:1F:35:76:45:BA:7A:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*; +6 more
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
firebase.tttc.ca
05m.bg
vespastg-link.25demo.com
meet.admitonedjs.com
identity.ameliarueda.com
appdimo.com
vepa.appsiste.co
app.b2bninja.com
bauenmotors.com
api.bookvitals.com
careadvancedpaediatricinstitute.in
www.carshare.ninja
www.cbpk.app
cisstech.com
closby.co.uk
get-bvb.coachbetter.com
chat.collegeek.com
bestel.colorcoding.nl
auth.thomi.com.vn
app.cultup.com
www.decisionjournalapp.com
www.dellcoo.com
design-and-beauty.at
www.dm1970.com
www.dungeon-bot.app
www.e-slipzambia.org
dev.mis.c21school.edu.kh
puwy.edventures.xyz
expressmlslisting.com
www.feedback.exchange
app.fitnesskonnect.com
forgeandframe.ie
links-pre.galgo.tv
gamekoda.com
fast.getdreammachine.com
dev.auth.groupspot.app
growlerguru.com
h2auth.app
links.haloedapp.com
www.hihuc.com
webinar.hirescholars.com
gepires.hrtech.com.br
hsuathleticscamps.com
imaxphere.com
stack23.informacast.app
jaydampitan.com
worshipsongs.jerrymattix.com
joinstar.app
spie-wuppertal.kapion.de
chijin.koujii.jp
www.licexam.net
identity.licitatii.ai
lyftnet.com
www.mafqod.site
www.marchelehill.com
www.matanbotansky.com
matthewbacon.com
www.mexedich.vn
mosamosakun.com
www.mtreexpress.com
mytimeofday.com
app.narebasu.com
neatwithnat.com
dreamcode.net.br
nexor.network
matchdata.omnislash.com
integraciones.orsep.cl
pickem.orwig.app
otkryt-zamok.com
ozahra.com
www.pmgaminglegacy.ca
www.prasangadhakal.com
test-signup.qwi-did.io
www.relicensemble.org
www.ridgewolf.com
robinstangl.com
rummyscorecard.com
www.russianorthodoxchurchlondon.ca
www.samklevin.com
sei-otomat.com
sfestetica.com.ar
www.shadowbox.tools
admin-portal.diga-meno-test-eu.cluster.sidekickhealth.com
app.smarttrails.net
sozotec.com
demonstracao.spekter.com.br
auth.starjeta.com
stlhack.com
api.swish.nu
tagticketing.com
taxiinhalle.be
theninagalaxy.com
www.hype.thrivex.io
timo-dobbrick.de
www.twosor.com
docs.ukie.app
undergroundgroup.ca
veagdemo.vacantvectors.com
websitebridges.com
europeapp.wingchan.net
Other domains in certificate