Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=petler.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 24, 2025
Valid Until
February 22, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
68:7B:74:BC:DA:5E:83:A8:F4:E4:28:BF:42:0B:99:6E:5B:C4:FD:8D:DC:4E:8A:1C:D5:4F:CB:23:45:78:66:E6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
greenlineglobal.com
0xmoe.com
tsg.12traits.com
2g4e.net
agendadeldocente.com
staging.agendaodonto.com
portal.ailahealth.com
aimoov.fr
alensgeneralconstruction.com
www.alongi.com
amurrayfam.com
ancorafit.com
animetrending.org
ankitsangwan.com
aprilblaze.com
astral-otter.com
attackio.com
app.avantidance.com
babgym.com
bad-nerd.com
badmoviesquad.com
bakkiicookii.com
www.balmoventures.com
basmey.com
www.bgonlineengagement.com
interview.bigmachine.io
bitequee.com
cfrancis.ca
mrmarket.clau.io
learning-platform-sandbox.cloudpssolutions.com
pescaanahuac2022.dashport.run
tctsa-cis.dev-ltl-xpo.com
drathaismicheletti.com.br
draviavemal.com
dszwarc.pl
app.easylaverie.com
staffpra.lasalle.edu.sg
egphuketclub.com
ekinbiye.com
clasificados.elsoldetijuana.com.mx
erpavenue.com
healthee.ethoshealth.au
links.staging2.feamzy.com
seo.firesoftyazilim.com
www.frataingenieros.com
gecsbernat.com
georgeevergreen.com
gitservices.co
greenstreakenergies.com
gtacarscrapping.com
hrviewpoint.com
ibedo.org
sharing.idreamgs.com
isocket.io
handschrift.ivlivs.dev
dandb.kimgem.co
app.laundway.com
nom.levita.app
magrathea.cloud
pmanual.mimamori-info.com
admin.mingaku.net
mohammadimamulhossain.space
reviews.informacion.my.id
myskillbox.in
admin.natuurenwetenschap.be
www.njtravel.nl
yolo.nomady.app
www.nulleffectstudio.com
staging.admin.onelife.vn
petler.app
procurepharma.org
profintech.ai
admin.propertyvaluation.in
core-visuals.r42.ca
kurawar-maintenance.rean.in
rebairpm.co.uk
www.renovaclinic.in
dlh-hayati-kotim-admin.rinjani-parahita.com
admin.s-learning.co.uk
max.members.sargon.com
portal-staging.seeqnc.com
www.shaunmusick.com
www.sle.siapco.mx
webviewintegradores.sistemapallas.com.br
www.solwall.com
www.swtruckcare.com
taskcanary.com
tektronconsulting.com
terrycrews.com
savethefluffy.theoretical.studio
www.thepeachyplanner.com
k2.tiffena.me
www.timokern.com
www.timothykinzer.com
test.tracyspitler.dev
tsutlovic.ca
visionvanilla.com
willowacre.com
www.yonda.app
www.zeodel.com
Other domains in certificate