Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=codecraftlabs.co.za
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 16, 2025
Valid Until
February 14, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
82:30:A0:72:3E:1E:47:7E:B2:87:48:8B:FF:B3:63:95:91:B2:2F:55:10:C2:29:FE:2E:31:A6:93:A1:B1:CB:8F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
integ.hic-oeneo.com
1010agency.co.za
3helium.xyz
5startours.co.za
alsamiyya.com
applynetworks.com
solo.archsolver.com
askverde.com
bo2s.com
bodanoeliajuanjo.es
bpm.app
www.cabsontime.com
www.camelot.dev
caribbeanplaster.com
cesariux2596.com
cetsebeth.com
app.charitas.id
clippertonislandyachtclub.com
st.cloismartlift.com
cloudsidelabs.com
codecraftlabs.co.za
codrs.app
www.visionsquiz.csforall.org
www.dastanapps.com
debitcredit.app
www.deemceelive.com
www.delight-books.com
dentnationnaples.com
drinkliquorpark.com
dynamicmodules.app
test-links.ecredits.com
www.fishtank.cloud
flapi.io
ceo.foxcityph.com
www.ftconsulting.fi
ggsssraipur.in
dev.botano.girrasoft.com
gitlabpipes.com
www.gregori-abogados.com
www.hachixp.io
hark.eco
hashinclude.info
www.healthpointsfitness.com
secretsanta.inspiritvision.com
diccionario.interstellar-wanderer.com
jalicorp.com
link-lok-fu.jec-digital.com
staging.joinisomed.com
katienorsworthy.com
komodo.top
koseisha.jp
labusta.app
www.loftaccounting.com
marvlist.uk
www.maxpuppy.ca
mountbasil.com
mrdsa.dev
join.mutualevents.com
mycheckit.app
mydocit.app
clarity.neuralpromo.com
auth.nicee.tw
my.onlinemeetups.app
www.onurhitay.com
app.openfair.ca
www.ourmalibubeaches.com
bap.packleashes.com
passeport-campagne-digitale-ccep.fr
www.photory.app
www.pixiiephotography.com
playwithvento.com
app-staging.pocketinformant.com
pokescope.com.br
polestarassetmanagement.com
pqmsport.com
proximatech.co
app.rechargepos.com
sabriumut.com
party.sallyfrancesco.net
sandaenergy.com
www.screalestatescr.com
www.servicelinq.com
link.sevilmis.at
www.sisco.app
sitwave.ir
soporte.smartdream.es
www.sonianara.com
www.speedmoose.dev
sfct.sportsacademy.us
test-admin.studely.com
www.suddenpeak.design
invest.supayut.com
www.supercalculadora.com.ar
www.terramatter.earth
upskilled.dev
www.uteroo.co.za
www.hml.vojo.com.br
witty.sh
go.worknowen.org
app.zenprofe.com.br
Other domains in certificate