Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bucktlist.braun-app.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
60:4F:D4:FF:E4:D1:A3:89:4B:6F:22:88:8C:FC:43:B6:89:79:0E:B9:67:6C:97:46:75:3B:D0:C9:EE:96:F1:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kre8.tv
www.acceleratecoding.com
trial.accessvid.app
adityamovies.com
www.akshayadroptaxi.com
www.amber-living.de
arges.mobi
www.ataraxiausa.com
firebaseapp.bigpos.net
easetrac.blackflux.in
bucktlist.braun-app.dev
carzrusltd.co.uk
www.centuriapicena.it
www.character-count-online.com
chateaudelaroche.eu
genegraph-ui-dev.clingen.app
clinicanuevavida.org
ludoapp.coderonline.in
www.lunamenguante.com.py
www.exceed.com.uy
www.connectxenia.com
stay-or-go.countit.hr
dataonline.app
demo.dealstac.com
diffuse.app
www.dorianthegray.com
qa.dory.app
e-ceos.com.br
app.arabic.earnings-watcher.com
ecx-labs.com
www.egg-hunt.com
evasku.app
evernest.tv
www.faq-kontaktlinsen.de
coordinator.fitoutawards.co.uk
my.glotio.com
gorgoris.com
greatgoals.app
www.greenstoneresorts.com
guignol.ninja
www.gvgarbal.com
www.gyldantech.com
h2oir.com
www.h2oir.com
huile-africa.com
www.ibguides.com
mas.idmx.io
mass.idmx.io
bilanci.innexta.it
js2dart.inspirnathan.com
number-race.jwvansickle.com
www.kasem.dev
konyataksioguz.com
litedevs.com
lowkey.dk
therealreal.madhive.com
madisonvilletollbridge.com
link.milize.net
consent.mistergreenlease.co.uk
dev.classmate.multinaire.com
clientes.nousmedical.com
pwa.nowverifyit.com
www.onixcontractor.com
phrasedle.co.uk
www.plotu.io
poeticforms.org
app.posible.in
test.posible.in
erp.premdeepmetal.com
prodevo.org
projectmimir.in
divida-cartao-credito.prosperai.tech
raiar.dev
r1.realsafe.me
www.realthaicafegrovedale.com
rolivo.me
www.sfhomeopath.com
www.shatrunjayfinancialadvisor.com
www.shoerackapp.com
www.sowers.io
porto2015.taf.net
tanara.dz
tendon.net
www.terahelion.ca
thewellness-nook.com
tjackapps.com
get.travu.app
www.tuneroom.com
octraining.turnosweb.app
univerleads.me
verbatim-game.com
widgets.veruset.com
app.visitorapi.com
www.wearexenon.com
webappex.com.br
fidlock.windsporttracker.com
write-rec.app
dts.xgoal360.com
beta-chat.yepic.ai
app-staging.youbumerang.com
Other domains in certificate