Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.peec.labcare.cloud
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
63 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E7:92:3C:34:46:9C:82:C1:B0:E8:B8:72:88:D4:A4:37:8F:B5:B6:CE:7A:D9:CB:21:17:74:B7:4D:B8:B0:2F:DE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31557600
Content-Security-Policy
Basic
upgrade-insecure-requests; default-src
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
km61.com
abusrestaurant.co.uk
acceleratech.uk
www.accounting-app.team
www.actekmfg.com
www.animalsforlifefoundation.com
radar-demo.anoff.io
mypack.backinpack.com
my.bandop.com
ui-kit-site.banexcoin.com
www.bedsidecardiacassessment.com
firetest.betelge.com
bilalabdulhadi.com
operations.bookaridegy.com
bymas.cl
link.bymiles.co.uk
www.capestack.com
capsigen.com
carlyneubauer.com
www.carlyneubauer.com
dev-admin.ccchymns.com
chalet-mauroux.com
chefplans.com
ca-ts-handicap-et-emploi.civitimeapp.com
civitime-sobriete-citron.civitimeapp.com
demohandicap.civitimeapp.com
michelin.civitimeapp.com
sales.civitimeapp.com
student-mbs.civitimeapp.com
test-energygame.civitimeapp.com
clasesdejumping.com
clean-hub.com
www.cleanwaterai.com
www.firsttelecom.co.th
hello.codemd.io
coupon-and-u.com
dev.cruxlarp.com
irsm.emanuel-inc.com
www.exportsdk.com
paytest.ezfinanz.com
backoffice.fireviewipt.com
firewatchaus.com
www.fischercrowne.co.uk
a0fd.foodle.su
www.fouzansaleem.com
dev.generic-website.com
genesiscl.com
www.ghanatin.com
app.glims.io
spacemanager.gofloaters.com
its.halinhit.com
escola.helius.com.br
apply.hellopillar.com
huntigest.com
i4technologiesbd.com
iamdunne.com
ilusionistanoda.com
ingotcorp.com
inomob.com
ivannovich.com
jupair.com
kdpuploader.com
kilinc.cv
app.krewsocial.com
kunjiengineeringworks.com
dev.peec.labcare.cloud
www.lakatoszuglo.hu
lab.majordomo.systems
mcspoint.in
mundocontentmarketing.com
www.mywondertale.com
www.oraclereef.com
ourstoriesgame.com
margarita.palmero.xyz
www.palmero.xyz
pilshuisje.nl
playrea.com
notifications.powersoft365.com
primechatel.ru
ratecompare.co.za
www.rimarkas.com
aqw.rxcx.au
servantnunooministry.com
simple-melts.com
www.soilsolution.com.mx
ciaafanfestcheer.sqwadhq.com
wkudunkinrace.sqwadhq.com
cosmin.stefandobrin.ro
sumnerdata.com
www.swifteverywhere.net
syasbahamas.org
techlmaginia.in
home.urma-world.app
veterans-seniorsjobs.ca
app.vooth.co
www.whatway.to
www.wybe.app
data.wyzwanieinovox.pl
yraheem.tech
software.yun.buzz
Other domains in certificate