Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=worker.link.beta.gigsmart.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:1C:06:6C:DD:43:74:AA:84:4D:03:4F:87:FB:62:54:4D:1B:AB:5F:9B:0F:BB:2D:15:B4:DB:B5:BD:49:9D:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
local.auth.meety.net
www.80six.co.za
advogadojoewertonsilva.com.br
www.agendarr.com
share.airly.org
www.aplano.de
arcsenal.ovh
bangalore.azhagudroptaxi.in
biblegeek.app
bilobaforwork-inappform.biloba.com
mint.blubea-nft.com
parkovani.breclav.eu
teachers.brocheballet.com
chargeportal.site
www.admin.erolink.co.tz
codeofeverything.com
www.vigorwitaminy.com.pl
commissionpay.app
beta.concierge.bot
creepycookies.com
crookedcreekcabins.org
docs.cryptago.eu
wb.dataleaper.com
dhwanikajoshi.com
stakingnodes.dittrex.com
open.spade.dmtw.nl
docuverse.io
dev.dotdotboom.in
www.drumaid.co.uk
eyejack.link
fieldmargin.co.uk
www.fillipcap.com
app.footyrecruits.com
3092-k4.gamefp.dev
pay.getshopay.com
worker.link.beta.gigsmart.com
acc.gitflow.app
www.hanifofficial.com
harrisonkain.com
www.hatchpot.com
dev.hbu.gmbh
chatterbox.hlarsson.com
icerpazova.com
inglesparacomissarios.com.br
iplanx.net
ippm.mx
jaipreston.com
jon.nyc
auth.http.jottocraft.com
skk.jrc.no
keypage.in
lerneckezueri.ch
marhold.fr
www.marshallwsmith.com
masquepinturascortegana.es
qa-dl.medipass.me
admin.meestory.com
www.melango.in
tops.millennials.mu
minidota.watch
www.momsandtots.biz
app.flat.monthly.cloud
www.morami.in
testing-app.myb.im
track-my-trip.neocor6.com
northernswimschool.com
northwestacademia.co.nz
nudeart.photography
www.offsitelink.app
www.olichaoko.com
oriolesoccer.com
carbel.pessego.com
placebin.com
powki.org
www.presencedesign.online
rachelrussell.dev
rateyoursociety.com
tisal.rflex.io
riyad.dev
www.rucovid.com
secure.nyc
crm.servetie.com
queue.sm64.dev
smart-process.co.jp
9kiohsgztlmfsfspm7dy.smartimob.io
snewpar.fr
low-code-cookbook.stephansmith.solutions
nova.sullivanproject.io
scp.techttgames.dev
tree-explorer.tokyo
deals.umun.in
villacrobatics.gr
im.vlts.pw
vnilab.com
wanneerkunjewel.nl
wtzp.link
xerotechnologies.in
plataforma.xglobal.com.br
yihanglin.one
auth.zsoft.link
Other domains in certificate