Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=webapi.proglesson.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 13, 2026
Valid Until
April 13, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:85:66:4C:54:B1:9C:57:CB:64:91:3A:FC:C9:A0:ED:1C:91:8A:5A:4D:B0:55:D1:EE:D6:A2:78:FA:09:30:00
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
flametask.com
stg-red-radar.airasia.com
www.alex-rubio.dev
hrz.beaconforce.com
club.app.bestathletes.co
businesslogic2.dev
www.chatxbuy.com
control.cittyo.com
armenia.aid-air.co.il
admin.realestate-saeroy.co.kr
complical.fr
hamsafar.contributenow.in
seethihaji.contributenow.in
www.cryptovers.site
app.curiositynavigator.com
belnord.teaser-demo.dbox.com
dear-tummycampaign.com
deltaquestoes.com
dhakalroshan.com
docs.docubat.app
docubat.app
faf4-wb-v2-old.sachso.edu.vn
faf5-wb-v1.sachso.edu.vn
gd-stem-lop1-old.sachso.edu.vn
gd-stem-lop2-old.sachso.edu.vn
ekps.in
www.eloquentlanguage.app
www.excelmaths.com.au
qa-wrh-portal.exitest.com
fitspecs.net
fishbowl.flow.club
www.grandfalcon.com
auth.prod.haikeix.com
hornbach-baustoff-union.de
login.dev.huddleuplearning.com
su.huiosministry.com
mobile.iblflexitank.com
imtpaveexpress.com
android.infiposs.in
www.ipmaua.org
jagarld.me
lekarz.jedrzej-lewandowski.pl
beta.joinsalut.com
kaizencapitalllc.com
a.kotai-bio.com
kp-safetyapp.com
kumikorin.com
forms.ladystartup.com
latinwings.com
lectricsengineering.in
leenbraeckman.com
littleroomvideo.com
www.logosgumruk.com
clientapp.lokapala.games
m4ttarnold.com
marroquinbarber.com
my.mastermindjam.com
www.medul.dev
mynameisspit.com
nachteck-dresden.de
pic-tfd.mentor-stage.neccton.com
neverbenbetter.com
pinchos.planck.biz
playwardle.com
prabhoo.in
webapi.proglesson.com
radianttechnosft.in
app-news-hub-legacy.robotical.io
rupeoinrc.com
saferonline.co
schaferfilemanagement.com
app.shipwithswoosh.com
ad.shuudan.com
silentbiplane.com
skillsconsulting.cl
dev.sport-smash.com
os.sreerams.in
www.studiooffdownton.com
subrkit.com
s-join.superintent.ai
www.swapyfin.com
syslaconnect.com
verify.threadloom.com
traveltogether.app
www.truelogisticinc.com
www.trustcheck365.com
tusprompts.es
functions.uniserse.com
upstateexotics716.com
www.vivekabir.com
voiceoffer.ai
app.voox.me
wealthmanagementexperience.com
wheresmyshiny.com
x20tech.com
devslink.xcaldata.com
xoxo-original.com
yero.academy
zacherl.dev
zergiocunha.com
Other domains in certificate