Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=virtualpatch.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 30, 2026
Valid Until
June 28, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:AE:68:47:36:92:CC:D1:F1:62:D7:F4:58:74:B5:46:FF:50:5D:25:FF:F9:DC:5E:59:01:83:AF:BF:36:EC:32
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ifckr.com
abirda.day
www.academiahub.co
adamhowardconsulting.com
app-links.alloyinstall-qa.com
www.alphapowersolutions.co.in
als.us.org
www.appliedcharts.io
www.astralegalgh.com
aebaseball.athlete-era.com
js.attranova.se
shop.baumgarten-gmbh.de
bemplus.com
berardopsicologatorino.it
admin.beuwi.app
www.bisuals.com
brickbase.app
www.caros-designworld.com
cellar-light.com
www.chillgoit.com
house.chronicinktattoo.com
coitaba.com
www.collagecreator.app
bleeding-edge.clue.client.cuona.io
www.dcpsaude.com.br
drcreaitivity.com
dside.co.il
www.dugl.app
admin.earnjoy.online
www.eclinic.com.co
www.pradozercy.eon.pl
espacolasheseco.com.br
evetec.com.ar
app.fadeawaybunny.com
login.app-dev.fielder.one
igniteaps2024.framez.sg
fridg.app
gabocorp.com
gbup.app
getcleanordie.us
gfgconcepcion.com
www.giardinaintegral.com
glasstechfab.com
guantesgutierrez.com
halalnj.net
www.hangsav.hu
wushuangxianmo.hengdeli.website
admin.heyagime.app
hisaabai.app
sub.horavalle.com
try.indigro.io
jiroteam.online
api.kickstats.jurivana.de
www.justusrademacher.de
www.kdforever.ca
links.layoutinspector.app
lifeos.app
linky.app
www.live-novel.com
maciek-dnd.gay
servicios.marathonsystemscontrol.com
measuremapapp.com
medivueplus.app
meetinganalytics.com
mendozascience.com
milljewels.com
minocaregh.com
quote.myclickandcollect.com.au
vitals.mynexus.app
mysudokucoach.com
kash.netanel.io
www.partners.nondemics.com
nursingpathwaysinitiative.org
nutryesalvador.com.br
apman.openwisefound.org
wisenest.openwisefound.org
otterenglish.com
11521346.peerly.app
petraltman.cz
app.polyglotscrivener.com
www.portozeran.pl
www.productiveads.co.in
qarvio.co
production-apex.rcloudsoft.app
schoonheidsinstituutlaurence.be
scrimdesk.com
www.app.smartimob.io
www.spyfall.me
thetrybe.app
timemash.com
tradottore.eu
coparmex-formacion.tribuco.mx
app.upstream.tech
link.valeti.com
www.verdantevolution.com
virtualpatch.io
crm.vizury.com
www.waafisoft.ca
search.zeigsmer.ch
www.zenmath.in
Other domains in certificate