Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=auth.bitbot.plus
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 30, 2026
Valid Until
June 28, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:4D:A8:0C:7B:35:58:A2:3B:9D:32:8D:A7:E8:1C:5B:94:A1:6D:7C:DF:52:8A:45:6F:72:03:BF:33:18:1E:FF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
getuganda.com
www.getuganda.com
123-meet.de
89ol.com
www.aeronexisindia.com
www.akamojo.com
atlantai.dev
authmesh.dev
learn.bangla.ai
beccamendelsonlouden.com
biascure.com
www.biascure.com
auth.bitbot.plus
bynowapp.com
www.internal.callidusos.co.uk
cercasp.org.mx
www.cercasp.org.mx
codedevelop.com.br
www.codedevelop.com.br
constructiq.store
counselingwithlizzy.com
credentialedcare.com
fantasyworldresort.dd.zone
www.ledovaplocha.ddmpraha.app
deeptechgroup.ai
dogushairdesign.com
dusha.com
www.erouska.cz
admin.farah-snacks.store
www.flordealmendro.cl
flujodevalor.es
us.foodmenu.world
qr.freeflyers.com.au
glitteryglam.com.py
pay.blablacar.gr4vy.app
pay.sandbox.blablacar.gr4vy.app
count.grevling.dev
cdn.test-ch.gyerunkanyukam.hu
hubert-fensterbau.de
humbagency.com
gifted.ironpeak.io
www.iwitty.in
jeffbubblescorp.com
labalyst.ai
lerenederlands.nl
biblioteket.libry.dk
log-strike.com
loudcamel.com
ls-dev.com
mafi4.com
marinepartexport.com
www.marinepartexport.com
pdf.marionsson.ch
memzi.ai
www.mixinfire.com
www.mynala.co.za
nabusciences.com
tax.newco.cz
hmlportal.nicbrain.com.br
norzux.com
orvex.group
www.pbgv.tech
www.physisches-theater-bayern.de
picksy.es
signal.pigeonquest.com
advisor.pineapplecf.com
www.pnsengg.com
podnosniki-wrzesnia.com
lpny-1205.porcupine.live
www.psicologaritasimonetti.it
app.querocostura.com.br
event-manager.dev.rallygo.eu
personal.rapiger.com
www.recesin.jp
bpc-157-mcg-1000.recipeeveryhour.com
high-potency-nad-supplement.recipeeveryhour.com
staging.suppliers.resbutler.com
www.revestimientosatacama.cl
www.ricambi-epoca.it
www.rodrigueslaw.adv.br
academia.samsamtec.com
sebastianogiallongo.it
skyn2.co.za
votehub.sreyas.net
stonematrixusa.com
www.susiadapters.com
demo1.swagger.cafe
swagger.cafe
app.team369stake.org
thefoodglossary.com
tlkismp.net
farm.varnago.com
www.vectorskillacademy.com
vendr.shop
data.vigor.pl
vlpl.group
volux.io
warmlink.ai
mta-sts.willtheory.com
workshieldapp.com
Other domains in certificate