Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=lyntolabs.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F2:DD:C1:8A:2F:8B:C5:12:51:59:F8:06:29:16:7E:E5:6A:F0:4B:DC:3A:1F:CB:9E:E1:6E:1D:D1:24:E3:6E:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
greentask.ai
abdugafor.dev
aifinders.info
airvihar.com
alteris.ai
amigoinvisible.site
romanee-gp.meupatrimonio.app.br
vgs-gp.meupatrimonio.app.br
arctoncapital.com
arthurliu.com
hr.atomx.asia
hr.eco.atomx.asia
atrofda.uz
axislabs.com.br
billietran.com
kontenin.biz.id
www.kontenin.biz.id
hlmc-lcat.bondrand.com
careercompasss.com
charge-wash.com
dev.chitlink.io
portfolio.akashchaudhary.co.in
www.kraftsolution.co.kr
codingpr.com
craftbyte.in
crewwho.app
www.datalabsys.com
anime.davonbarnette.com
indicators-beta.daytradeu.com
indicators.daytradeu.com
www.deenbuddy.app
cloud-staging.deepcell.com
deeplypatterned.com
www.deeplypatterned.com
approtacerta.designervip.com.br
corporate.dineroo.com.au
www.dionmisic.com
vocabularybuilder.dmitry-o.co.uk
app.draftlingo.com
psychiatryclinic.drlowjs-bagan-penang-psychiatrist.com
drunkevolution.com
ecliptalabs.com
www.ecliptalabs.com
eddiec.photography
vmmckkl.edu.in
eizir.com
eluvio.tv
invoice.flyhighgroups.com
gizmofunk.com
gnslk.com
gridstudios.us
admin.guestmotors.in
heylmun.com
heylumos.com
ibcon.kr
crm.indiquer.in
lichhocdtu.io.vn
mhn.izuzu.site
www.joviaggio.com
crm-demo.kimdragons.com
uat-msteams.knbases.com
nadakkavu066.kriyatma.com
cw2.ksug.ai
www.leansignal.net
licensepro.app
lyntolabs.com
www.masterehi-snack.com
auth.mealmaite.com
www.medicalhousecompany.com
www.mookieterremoto.com
www.mrpone.com
web1.nutriswift.in
www.omegax.health
admin.onskill.in
faculty.onskill.in
www.outcomesatlas.com
www.peak2pintwhistler.com
auth.pinesworlds.com
printmetrics.app
repuestosotomayor.com
rewardsbase.app
rishabpally.xyz
qpr.scouthub.app
stock.sensacionesdetangoshoes.ar
skolekart.no
smart-classroom.in
plasticologybeta.surgerymastersacademy.com
www.tadaapp.com
www.techmondis.com
www.timerobot.net
trimbleconnect.cz
vadaka-register.ukb.digital
urban-classics.ch
app.velanys.com
venkat-lewis-phase2.site
vimseam.com
vitruvian-sportech.com
quest.yoshinori.hair
yrreddyconstructions.com
jane.zdravevski.pro
Other domains in certificate