Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.post-urban.social
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 14, 2025
Valid Until
January 12, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:75:E0:6A:FC:84:1C:E2:5F:B9:18:2F:A2:95:78:27:20:4D:5B:84:E4:1F:ED:C0:0A:C7:A4:E4:0E:6B:05:89
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
johannfeser.dev
121call.app
www.3ok.in
firestorage.9lessons.info
www.aiphotosanalyzer.com
al-abar-al-sharky.com
www.allaboutus.in
amix.live
www.aplyease.com
apronnotes.com
www.artistar.in
austinkillough.com
farm.avalaunch.app
avenmor.ca
www.borkenacharity.org
www.chotaurl.in
adcoreindia.co.in
www.ati.com.vn
www.crestituyo.com
dannyandesha.com
www.daycounter.co
dealcop.co.uk
www.desirestudyabroad.com
devotopark.com.ar
digital-soft.org
dev.s.dsmap.jp
devcommunicate.elevationai.com
hakemus.energiasaatio.fi
preview.engineusapp.com
www.espoonikkunajaovi.fi
www.fairhire.me
fima.ai
provider.staging.fitkit.app
www.freakings.band
devfest.gdgpoznan.pl
grobeintllc.us
gymratsnft.club
hayokcooperative.com
hey-dan.com
www.impactwrap.dev
ei.inovita.com.br
swqa.invue.live
iolab.app
portal.izfood.com.br
www.jeevanvarmap.com
api.jobcalls.com
k53onlinetest.co.za
kickasscoding.com
www.koblesolution.com
lakpitana.com
www.lessontree.co.uk
m.lifecircle.app
kinaroi.liluna.rocks
www.linkh.in
littlebe-lievers.app
lucreciasanchez.website
ludlooms.com
www.magiclink.in
multisig-testnet.maxi.network
mayoresipsibat.ar
vehicles.midmichrentcars.com
admin.mockhouse.jp
vza.moreapp.com
service.mypickapp.com
www.n3service00.com
nazpharmacies.com
www.nelarobert.com
nexfuze.com
www.omwf.de
originrefri.com
my.ottfeed.com
pedidosdabruno.com
app.post-urban.social
prettyepic.design
admin.itqan.qafcom.com
admin-test.quickjobs.cz
www.reisetip.app
demo.roboflow.com
www.roth.ooo
www.rsworldpi.com
www.scown.co.nz
seatwyze.com
unity.seens.io
www.shreerangtech.com
shufflefy.com
smimportdiesel.com
hvl.snapmentor.no
receiving.stevemadden.com
storebybiazita.com
www.switchconcept.fi
repair.takeitnorth.com
tenpoint.ai
firebaseiosauthsample.testdomaindonotuse.com
www.themovingvr.com
beta.thepennyinc.com
tinyfeeds.app
www.vfmauh.com
viabrad.co
teacher.vital-ed.com
www.worldmoney.io
Other domains in certificate