Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.car-insurances.demo.photofied.tech
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:A2:D5:BC:FD:85:26:18:22:7A:27:18:FD:8E:57:28:33:CE:0A:FA:CF:88:A8:6D:F4:8E:BF:22:42:54:98:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
grammarai.com
afw-test.3dcloud.io
afsararif.com
www.alanburles.co.uk
alduin.com
authentication-egypt.com
awqat.app
www.blixo.xyz
brewpal.com
www.budgethelper.app
admin.certifysimple.com
chakravyuha.org
collectivegroup.us
resume.comann.dev
www.conorbyron.com
www.cranestack.com
darshan-naidu.com
davidjoudrey.co.uk
portal.dev.deeploop.com
studentlink.digischoolapp.com
directdisinfecting.com
dmapt.space
ducalle.com.br
www.eacabs.com
www.eccentriclogistics.com
auth3.google.eitvcloud.com
emilijastojanovic.com
www.enkelsms.no
get.epromo.ee
widgets.ewhallet.com
fishsolitaire.com
www.flink.coop
lgtm.flutter-study.dev
cfdi.fraiche.com.mx
frameluxmedia.com
ghillicrackers.com
ginfo.gg
glob101.com
www.heinzleung.com
hellocall.ai
hgrth.com
blog.hinds.io
www.hogarsanjosedeamor.com.co
app.hr-ms.com
www.ibuildproduct.com
e.idolpres.org
student-dashboard-demo.ischoolconnect.com
www.jitoin.com
link.joinfud.com
kajakiborsuki.pl
alpha.punchlist.kaykyb.com
lottobomb.com
auth.lurky.app
magicalbakeoff.com
auth-qa.memberhub.de
www.mikaelmork.se
motologger.app
mpcs.io
www.muffinstv.com
blog.mymoons.mx
cockpit.mentor-na.neccton.com
www.nftpaywall.com
padmap.org
www.pastthefalls.com
app.car-insurances.demo.photofied.tech
platetext.com
puglabs.io
r01.dev
rainbowpixels.io
www.raoshealthcare.co.uk
admin.rello.co
rishtadata.in
safe-eye.app
creature.sejs.com
shoplystr.app
app-dev.sidekick.health
sidesed.com
www.skir.ca
www.spareek.com
spcheck.org
stampi.app
s.storellet.com
sweetomengood.com
www.swissknifecalculator.com
app.tapthemarket.com
ogdenjs.tcsappts.com
teacapps.de
tech3systems.com
fr.teresabarrueco.com
www.thedeiscorecard.com
lily.thelotusmethod.com
www.thepourlive.com
www.thetim.tech
thisisnotscam.com
app.trivion.online
alma.turnosweb.app
onefuncional.turnosweb.app
rdaa.turnosweb.app
www.umawar.com
dyn-dev.whichone.in
Other domains in certificate