Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=fb-connect.stage.smartkoda.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 03, 2026
Valid Until
May 04, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BE:07:DA:A6:4D:C2:06:45:91:90:51:1F:58:63:E6:DD:2E:3C:61:0E:44:62:B2:7B:A7:B2:ED:29:7C:35:D1:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
hlinc.com
stopovergewicht.aanvraaginformatie.nl
ingresso.alemdacura.com
l.aleric.pl
connect-dynamic.amrock.com
b2bvalker.com.ar
beautyrank.org
behave.com
admin.dev.bioracermotion.com
buscarpatente.com
bynem.com
lw.cl-dev.ovh
cleverbuild.io
bhanu.co.in
collectspot.com
courtmatch.co
www.detoxifai.com
sigalogin.matheusrmatias.dev.br
www.discriminatiemelder.nl
www.divshot.com
isignage.easysignage.app
innovaciondocente.utpl.edu.ec
dashboard-test.fhinck.com
gamerpro.kz
gazolukas.com
geekytwin.com
goquasi.com
www.grinn.nl
www.helloshirt.app
www.highlandacreschildcare.ca
idiotproofdietonline.com
wordii.infinityrisers.com
app.inordine.cloud
one-education-stage-5.ischoolconnect.com
jessica.fyi
volcja-blagajna.jezersek.net
www.jingram.me
www.joshuamarsh.me
www.kredio.se
www.liliandtheyorkies.com
www.lotuspremiercareltd.co.uk
lowell-place-apartments.com
www.lrnco.cc
www.mailonly.net
main.manbitesdog.pl
martagg.com
melissawadsworth.co.uk
miiteratechnologies.com
sf.muslim.events
agenda.mymoons.mx
napes.co.uk
pe.nexlab.ai
novajukebox.com
novoda.tv
www.onemovie.jp
oxygentech.com.au
dashboard.parkchamp.ca
pcbclick.com
affiliate-login.phot.ai
shared.pointo.app
terminal.polynar.hu
postpost.it
partners.pupford.com
uat-sandbox.demo.members.sargon.com
stage.sharpexam.in
www.shivramverma.in
goodguyvapes.shoppio.co
www.simon-huebert.de
stage-web.simpo.ai
fb-connect.stage.smartkoda.com
www.songangel.com
sounddrop.io
speelmee.app
spielblock.app
tradeconsent.suigenerisconsulting.com
www.surftracker.app
beta.takepart.app
admin.tarjemle.com
www.teamsottozero.it
share.trakku.app
tests.truforming.com
tuko.us
squat.turnosweb.app
tv-remote.app
checkman.unitinnovations.com
admin.urbco.ng
www.usinagemsaraiva.com.br
usmadesupply.com
easy.tk.videolink.app
vpt.vidoori.com
vieetudianteacademielafontaine.ca
villegas-v-adt.com
www.vinter-bryllup.dk
vizzn.ca
vlive.media
voxwiz.app
app.engage.demo.voyagernetz.us
mercer-advisors.wmonline.co.nz
xilinus.com
zickzackzock.com
Other domains in certificate