Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=symbola.aimcomely.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:5B:EF:9E:D1:72:BA:15:46:A5:9D:64:AD:FF:B0:97:EF:69:CD:27:20:66:13:73:20:D0:10:73:31:87:17:C6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
guidex.app
symbola.aimcomely.com
www.altamimi-lawfirm.com
naughty-or-nice.anb.codes
www.andreapagni.it
www.arbaaz.io
dashboard.arion.run
www.astrograph.io
automatisme-diffusion.fr
behuman.online
bimtable.app
portal.bookingflow.app
www.breakroom.social
www.coact.space
dev.codeheroes.app
forms.confapitrentino.it
www.crossingvoidhq.com
ctca.dev
gamify.ctingenieros.es
280blocker.deadcode.rip
dmvaljevo.rs
elenascherweit.de
sorcerer.escthegame.com
www.espahelsinki.fi
evalme-panagora.exploredata.app
www.farmersmarketwichita.com
www.fln.app
events.flockx.de
www.florbelamendes.net
app.vacation-requests.g-workplace.com
ntorresj.getbrief.app
auth.highlight.run
iansa.fr
www.iceplanet.store
rochaequipamentos.ind.br
app.indonesiafashionweek.id
contabil.inovita.com.br
www.iosbr.com.br
climatescape.jakesherwood.com
link-ho-man-tin-plaza.jec-digital.com
www.karthiksanthosh.com
www.kaschwabble.com
www.knova.io
kvnconstructions.in
ui-proxy-mockexam.leanwisdom.com
mantle.pics
galleryforreddit.mightyfrog.org
test.mijnbabydagboek.be
sankhya.mitraecp.com
links.mixelcocktails.com
www.mizo.earth
ilhabela.muitobonsventos.com.br
buttonmaster.notaproblemforlong.com
app.br.nxt-lvl.ink
chennai.onewaydroptaxi.co
coimbatore.onewaydroptaxi.co
vellore.onewaydroptaxi.co
www.orientalfoodmall.com
firebase.peepsportal.org
dev.pglux.com
www.propours.com
etc.upt.razvan-popescu.com
www.reablock.com
api.reach4help.org
www.revolutiontech.net
riosambatrip.com
www.rootedfaith.org
expense.rsin.space
rv-studios.tech
rvemu.app
open.safeproud.com.au
admin-dev1.vks.secom.jp
sexvers.com
www.sipway.in
theparking.sismoit.com
soaresconsultingtech.com
dev.ope.sompo-de-noru.jp
account.sponsorshipawards.ie
m.starrewards.starrewards-uat.co.uk
dev-web.startuplogin.com
www.stellarjaysoftware.com
www.sumoptim.com
swiftgun.homes
admin.takeaway.mk
smp36.tcontur.pe
tmstream.com
toraizon.net
tracertcompliance.com
app.udejm.com
www.urjinee.com
vavtronics.com
crm.vhci.ro
admin.vidyanidhims.com
webapp.vsmac.com
wablur.com
integration.warswarms.com
vorschau.we-build.city
web.yayshop.io
youroldbooks.com
hako-views.yyyoichi.com
Other domains in certificate