Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.caroosy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2E:02:C2:7D:53:43:44:D8:43:E9:AB:8A:8C:AD:F9:46:E0:6A:16:BD:C9:B9:CF:62:16:10:73:15:BD:6A:F9:B5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
iran-bazar.de
words.42puzzles.com
5dthinking.ca
alike.wiki
resetpwd.alosuite.com
www.altbau.net
saac03.antoniogalanti.com
www.appvocate.co
solshooter.arenastudio.fun
www.asesoresjbl.com
ashfordcleaners.com
atthegate.co.za
australianmarinediscounters.com.au
www.australianmarinediscounters.com.au
studio.backlight.dev
barnesconsulting.dev
admin.beenfo.com
bimideal.com.br
www.binarybotz.com
www.brainkos.com
shelves.brollyhub.com
calinlucian.com
app.caroosy.com
safetybingo.carsonagency.com
choicebuild.co.uk
www.code-snap.de
codetrackerai.com
codeworks.bg
www.codyflood.com
www.cloud.connectedboat.eu
convene.me
coolneighbors.com
beattap-notice.cosgy.dev
dharoma.in
gxdoc.digitalprojex.dev
dypran.com
www.evorps.co.uk
www.externalytics.com
app.fansonchain.ai
wahlkabine.firlefleisch.at
fortunehomecare.com
freeheictojpgs.com
crypto.furikuri.net
stage.business.getpigeon.com
go-corner.org
cx.gqsecure.com
disney.gskkumar.online
halosinsight.com
buonifabozzi.hinvoice.it
company-uat.hotwax.io
www.hypersquare.design
firebase.iamprolog.com
www.ilmalammox.fi
inviser.cz
jaycerushton.com
fenix.kindleanalytics.com
app.kloudle.com
meaning.lifevisor.ai
ligenium.com
lingotable.com
localtrustedlender.com
lumberjillmilling.com
www.docs.maraikka.com
mechcart.in
medcap.me
www.millionsolutions.dev
nuzzlet.com
www.objetodiseno.com
www.ontwerpen-voor-geld.nl
hashtag.parthvirani.com
pc07.online
peartech.in
adstxtgen.playground.xyz
3d.prakash.vip
www.qnailsspa-sandysprings.com
quizletz.com
rankrushdigital.com
rashad.dev
api.regenbogen2.de
www.restauranthappyhour.com
www.rixels.com
serbianex.1983.media
employee.slammtrains.com
devauth.spory.co.jp
app-staging.sprel.io
steven-gu.com
cdn.swingwizard.ai
scoring.tamiltheni.org
tayphuot.vn
www.therightquestion.dev
console.dev.thingware.net
www.tinyview.com
triageme.org
invite.tsu.social
poster-admin.tuntoon.com
umairshaque.com
www.waiter24.net
webtabel.com
wiltshire-global.com
zigzag-eg.org
Other domains in certificate