Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=get.pixapuzzle.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:02:2B:F7:63:8A:BE:07:19:AA:C5:F3:CE:51:42:4F:AC:7B:54:D7:3F:CF:E2:02:30:E6:BA:08:15:E7:A8:04
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-ekeqRVU1Nyf4LLLz5LCGVA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
leasing.sg.rushowl.app
www.acidijitalokul.com
beta.adrionic.xyz
ai-technologies.jp
aistreamline.com
www.allmedi.de
demo.amavatech.com
tuenti.anderibz.com
medalsplaza.appily.nl
arnoldrodriguez.xyz
www.asska.org
www.bettersyncadvisory.com
goto.bigalbum.co.uk
boglebot.com
clan.bradsharp.dev
bunbomivit.com
caringangelseducation.com
cleanfixpro.eu
tellshare.co.kr
community.codingblackfemales.com
tv.coibong29.live
www.colorwise.me
www.blsuppliers.com.np
www.curiosity-driven.com
www.donotdraw.com
www.dougliu.com
dpyprovisioning.info
emailmyapp.com
www.enissadiku.com
account.ezpayslip.lk
docs.fareclock.com
link.fitflexapp.com
peru.flutterconflatam.dev
foodiebox.pl
links.g3stiona.com
goudenrakkers.nl
hallobezorger.nl
hdeapp.com
www.hokage.io
fenland.horseriding.app
app3.insyncapp.io
www.javacw.pt
siglo21-demo.klarway.com
links.landlord-go.com
roddom.lviv.ua
maristcamps.com
motiv.mayamd.ai
mayamdai.com
www.moongoldprod.com
moonsdental.com.mx
motobase.jp
go.muhaaz.com
dynamiclinks.myfoodlife-staging.com
www.nikolasoft.com
nimabakes.com
nobpo.com
candidatelinks.offerdox.com
app-link-dev.okonomiyaki-honpo.jp
auth.onelyapp.com
otowa.io
cardinalcapital.partnerhub.co.za
www.pinahogar.com
get.pixapuzzle.app
pocketmod.com
www.politics-simulator.com
kiosk.preprod-tastio.com
devsfeplayer.proxtera.app
www.qwelohq.com
api.rcbleague.com
epkdev.recordunion.com
www.ricsarabia.dev
rishithasriya.com
www.samosirco.com
siliconally.org
simplehiittimer.com
www.sparemic.app
www.sphrase.com
app.story-tree.eu
www.sysemp.net
k2randy.tallyfor.com
www.teatime.cafe
thamonish.com
sandbox-level-eu.thelevel.ai
dev.company.tieple.com
www.traccio.app
orchidemenu.triggersplus.com
www.trivium.fun
turradar.ru
ebus.urls.urapp.site
www.vaina.club
voiceapp-lab.com
dealerhub.voltbikes.co.uk
votr.live
firebase.mybushfireplan.wa.gov.au
wikhop.com
www.wipdata.tech
location.wiselysoft.com
www.xvision.me
zenlotusnosh.com
zumspot.com
Other domains in certificate