Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=demo.showroom.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 22, 2025
31 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2E:9C:34:AD:BA:B0:68:A7:E0:7E:60:42:72:F3:4B:43:F1:EF:A7:0F:0F:88:DA:0B:7F:BA:42:67:FF:E1:8A:0B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
harmkay.com
www.24wash.link
staging-get.433app.com
ca.portal.adgile.media
ambiance.dev
www.avertedgames.ch
borg.live
borism.net
bork.dev
www.breakfestklub.com
divino.caazam.com
carrosdeluxo.in
admin.bowldoc.co.kr
kumho.spacetalk.co.kr
pluginsoft.co.kr
www.ankitacharya.com.np
sharing.continuum.social
pp.d-doc.io
danilosalvador.dev
app.domeiq.com
dre.gs
superadmin.driverguide.is
duba.hu
www.elisabethfalkemo.se
inmemoryof.fanciedstory.network
finavia.eu
jasdec.flow-insight.com
www.flutter.dev
aski.furry.my
models.futuremt.biz
www.gamcheatsheet.com
www.get-gs.com
gleesh.com
gmflx.app
admin.goodgiving.com.au
habitbind.com
homeland-festival.de
app.dev.hubs.is
swan-driverportal-staging.ingogodev.net
intuio.io
jamesdwatson.co.uk
me.jauregui.dev
jorden-cw.com
junh.dev
www.kajaaninlentoasema.fi
www.kastel.ro
myymalaecommerce-dev.kesselrun.dev
www.kff-kss.no
kritik.id
latlon.live
liquidlevels.com
www.locuslogistics.com
maozyosifon.com
www.mathnstats.co.za
icconicca.mewo.es
noah.mobileappster.co.uk
mrabygg.com
varsonalia.link.msapps.pl
www.mylegalexpert.be
manager.mysideline.com.au
mytripmystyle.com
nakarmi.pl
www.nakongsolutions.co.za
nexperia.next-audit.de
onlydevs.store
app.ontimo.cy
osemmdeveloper.dev
pinkpineappleaugusta.com
www.pizzolante.dev
planb.lat
playr.cloud
www.processcomplete.co.uk
www.projetera.ca
www.protectors-of-balance.de
www.rcmavalet.com
form.richardcordeiro.com.br
www.richardcordeiro.com.br
demo.showroom.app
www.siphonapp.io
www.skulptink.com
api.skynetcomputing.com.au
www.solbase.xyz
sparcapital.com
spoilr-app.com
tattooai.online
www.teplyakov.me
theaiguru.in
threeleaps.net
admin.trainlitapp.com
trayi.org
dashboard.utupay.co
varejo360.com
unitedimaging.vidocto.com
online.viscuit.com
vyuvan.org
invoicestaging.wexsel.com
donrifa.wuju.co
zilongyu.org
www.ziomm.org
regal.zoeames.com
Other domains in certificate