Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=karur.jiotaxi.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A0:8E:27:57:42:58:DB:3B:F5:CC:39:56:49:9B:E6:79:E7:0A:AB:50:D9:2C:F0:4F:3D:9E:E2:F3:5F:CF:BC:60
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
gakoapp.com
ai.abegs.org
app.anticamente.com
estabelecimentos.app-quefome.com.br
auruminnovation.com
www.booper.eu
www.bootserviceroermond.nl
pumpkin.bubbleg.dev
test-driver.buzztop.io
www.cav.rsvp
checkfight.com.br
api.chirp-dev.net
cis-cleasindo.com
app.theory-learn.co.il
app.viver.co.kr
crm.warrix.co.th
onebook-remote-controller-uat.oneclass.com.tw
comitemujeresacit.org
chat.comprendo.dev
staging.conqr.com.au
correlate.me
corujanoturna.com
dgr-painting.com
courses.diarium.dev
www.dr-schnell-wehrheim.de
fableton.ai
cv.faizal.pt
progressus.farmacare.dev
a0is.foodle.su
www.fox.my
www.hbarspace.com
sh.idavid.hu
askboard.indiandevelopers.org
indiechess.com
admin.inspectmhk.com
app.inspectmhk.com
www.jarvis.pk
karur.jiotaxi.in
www.jobapplicationtracker.app
jordangrumet.com
www.jordangrumet.com
nibiru.jorgeluis.com.mx
www.konsciously.com
loris.kratosle.com
epiclabitam.lapieza.io
apply.lifecu.ie
julekalender.lillomarka.no
mipuerto.liverpool.com.mx
livve.io
www.lovedeliveredcards.com
lucas.men
www.mallettent.com
dev.marketizador.com.br
montsupro.nl
moonspay.mymoons.mx
app.myron.finance
processor-dev4.myya.com
www.nixchallenge.nl
nofriction.io
new.nu-tf-lab.jp
www.nuclea.id
distributors.overlapp.io
pb18.in
think.planosophy.info
www.propertygambit.co.uk
rc1.1.zerothreat.dev
realgamesapp.com
endresshauser.recruiting-solutions.org
retrohambi.hu
samadesoga.me
www.saranga.me
www.sayritech.com
elf.schmankerli.at
www.app.skinidesigner.ch
link.skipro.live
colniza.gerenciazap.smartmidiasdigitais.com.br
snapscale.life
www.soldiersgym.in
sreerams.online
sudoesteimoveis.com.br
uat.surance-app.io
syvensquare.com
tasty7.app
tchabita.net
www.tchabita.net
www.technopresso.com
dash.terron.me
www.thecodinggirls.com
goodshaadi.thehopestreet.org
auth.thesquaresgame.com
tsundereservice.net
www.tunetally.com
ugattaplay.xyz
vcafourek.org
waxyfast.com
webcomponents.in
www.weisser-zwerg.dev
app.whaleapp.io
survey.whiz-cart.de
zs-soft.hu
Other domains in certificate