Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.foodsmartstrategies.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
80:6A:C7:E9:29:B4:6E:42:DF:93:BF:E8:47:90:D5:90:72:2B:1F:83:D9:70:AB:DB:D1:18:DB:29:08:E2:B2:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
gameservice.com.mx
a2council.vote
www.abodesaafan.com
overlay.acadarena.com
rmtest.acentech.com
actiondash.com
activeplaces.me
www.ajpyeventos.com
thierry.architects-and-architects.com
ashna.at
crm.augustahitech.com
issuing-service.bill-one.com
bind.ba
biorobson.com.br
bumpkds.com
admin.calvarycare.app
baseima.ciclohidrico.com
www.clydelobo.com
www.codingblackfemales.com
colmon.fr
gallerywebapp.rupak-thapa.com.np
semapp.cometius.app
plot.copyprintsh.ch
www.corrievannie.co.uk
culturedkidscuisine.com
link.curbsidesos.com
nibako-mng-dev.daihatsu.co.jp
desoftware.studio
privacy.dibolix.com
www.dilbar.dev
dogon-ogon.pl
www.dreamgyf.com
www.eljuego.cl
www.embriot.net
www.equalspeech.com
ssr.evenses.com
www.familykonnect.app
app.foodsmartstrategies.com
front.cat
chatgptflutter.gabrimatic.info
www.garuzo.xyz
blackpink.guru-pon.com
hama.day
hanhdev.xyz
www.harshad.dev
staging.ifixitapps.com
infracloud.infracont.com
sareperforadoralatina.inter.mx
ipv6-insider.de
jayantbhardwaj.com
jemmwoodworks.com
www.jysinfotech.com
saintjerome.kards.fr
fruits.leandrodasilva.dev
bike-rentals.lexer.dev
plant-my-tree.litta.co
maaratravels.com
www.manushtitechnolab.com
marilyncordova.com
f-qa.mbnk.com
wedding.mcdamon.net
firebase-static.moguvar.com
wedding.mubashira.mk
m.mumerz.com
maxpromo.nabilamerthabit.com
dash.nutriacademy.net.br
conta.notario24.com.mx
oakhillsonline.ca
www.oliviarees.com
kyc.onehypernet.dev
orpheusapp.com
pdbolinao.com
app-legacy-dev.pixis.ai
playne.se
dev.pointrade.com
smartlamp.potatoma.com
app.praticantes.org
rangai.tokyo
www.shii.link
shinken.app
app-registration.slconferenceasia.com
www.sodastreetfood.com
qa.softion.io
test.strass-app.com
www.tagneeds.com
web.taskio.app
w.tc-timecard.com
thedailywordgame.com
theinvestorslounge.com
www.throughbond.com
tryspell.com
www.ttylevents.com
undelayappdashboard.com
join.urxconference.com
videollamada.uvi24.com
uxagents.com
ventureplusprotection.com
vietnamoutlets.com
loch.vvek.dev
ww.wayla.com
Other domains in certificate