Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.octata.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 14, 2026
Valid Until
April 14, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:2F:8F:8E:C5:84:7D:F2:43:6C:6C:71:BA:4C:AC:AC:E5:44:97:9C:9B:F7:F6:8D:9B:AD:02:41:EB:8A:C3:99
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kryptallon.com
www.kryptallon.com
a-rha.com
www.a-rha.com
www.agentgenesys.com
aifense.eu
staging.anbi-remind.jp
appfluent.us
www.atolyeelektronik.com
autofooty.com
backdropsforless.com
biolatube.com
about.bloop.eu
sales.bloop.eu
broadcastclosers.com
buildawsm.com
www.bwabtak.com
www.trimada.co.id
yesiltepegunesanaokulu.com.tr
construtorcheck.pt
www.cricanalyst.ae
cursiveconverter.com
dadcircles.com
dionisiowebsolutions.com.br
www.dionisiowebsolutions.com.br
www.cgf.edu.sv
egrazeapp.com
eleonora-luppi.com
www.emrearsay.email
fadlisani.dev
remedials.fibi.works
homolog.gestordoagro.com.br
www.gittofarmersmarkets.com
sonett.growduct.com
www.harristec.com
www.hexaflex.dz
www.hjerne-kraft.no
hofchat.com
holamanola.es
icancodeacademy.com
cadastro.infogab.com.br
www.innosparkglobal.com
www.joyeuxr.com
juanmg.com
vendas.jutatech.com.br
kalmine.com.br
kernels-analysis.com
kidnxtdoor.com
kinetickickoff.us
kingsridgetulsa.com
kinyarwandaforever.com
www.kmin.ventures
app.launchbeyond.com
markodin.dev
www.matveyosipov.com
mccanntv.com
promptvault.mimmiu.ca
mohsenelsisi.com
tbsmart.my.id
mygentlepartner.com
nabdh.ai
upgrade.neoufitness.com
admin.octata.com
openstats.live
status.pastelstudio.net
playright.dev
playrite.dev
protoflow-us.delivery
rebootamerica.us
relengersadventures.com
www.relm.ae
resiliencegroupinternational.com
ringroster.com
sc-beratung.com
scriptlyfy.com
scrollplayer.com
selezionidieccellenza.com
studio.shop-vibes.de
sidhikshasolutions.com
demo.solvius.co
somoseasybots.com
soupbrain.com
www.soupbrain.com
loxam-dsi.speakylink.com
pwa.super1foods.net
svilokos-photography.com
bodaduquecisneros.swanmoments.lat
bodagranadosbolanos.swanmoments.lat
www.sweetfilm.app
t-0.network
tarkovstash.com
admin.teheleventures.com
tokyo-scaler.com
tradeflowos.com
turtleleap.com
velario.app
vizagetec.com
www.yujiao.autos
yujiao.autos
www.yusen.autos
Other domains in certificate