Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.konfer.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 30, 2025
Valid Until
December 29, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:BE:A4:38:94:D7:15:A5:90:0D:C8:37:53:16:64:F9:51:ED:4B:B6:F9:BF:73:B7:8B:1C:4C:58:6A:91:51:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mags.gg
app.adalong.com
api.adomne.com
ae3a.com
partners.aidefinance.io
app.alarmmonitor.online
glasvandoren.alusta.be
www.ampwrx.com
andy.uy
www.andy.uy
pro.apf-france.com
authways.com
auvaan.org
aviat.io
prod.axnote.app
demo.basecasewealth.com
www.bezpecnykod.cz
binhduongsteel.com
www.bitbucket.run
www.bitway.app
bukitmeraq.c3dss.com
callcenterajaib.com
co-bee.net
www.busy-tlv.co.il
inthongengineering.co.th
coinmeca.net
classic.cream.finance
www.duyo.io
elektronicznyrozaniec.pl
link.engineous.net
www.factumintelligence.com
fetachain.io
admin.finderup.com.br
flymatics.in
admin-uat.flymeout.io
partner.freshfarmgoodness.com
smapp.fsma.pl
www.furnariuslab.com.ar
devfest21.gdgstrasbourg.fr
geoladak.hu
globalonewaycabs.in
sapc01.hanstan.link
www.haripro.co.uk
www.hawkrealtyandinfra.com
erp.hmax.com.br
app.hospitalveterinariolevet.com.br
issacucumber.com
www.izaac.app
josepaul.dev
www.konfer.ca
contact.konnectcraft.ca
limitedqadalric.site
skoryk-competition.philharmonia.lviv.ua
adi.magnolia-jewellery.pt
assets.mangafi.org
www.medium.fun
mnjus.ua
web.najmuje.com
howsyourday.neotap.net
survey.nestian.kr
admin-v2.app.nexus-qa.com
www.playify.it
pvmolds.co.za
www.quiztjedatje.be
rasa-community.com
renooa.com
tvweb.ribeirao.br
ops.riv-alumni.com
roterfrank.de
rsienterprise.com
sammacginty.com
sayrusapp.net
scanreader.app
shariasi.com
www.softwoodtextiles.com
www.songxy.com
www.sportovoda.hu
test.swaparoo.app
host.talkaboat.online
tdcentral.com
www.the9daisies.in
stage.jobs.tokhimo.com
admin.tumn.it
produttori.tumn.it
dev.genre.quiz.thrive.uk.com
unhurriedgame.com
www.unhurriedgame.com
univentory.io
vanishgram.com
portaltest.vendorbadge.com
vigorcarebharat.com
app-staging.w1consultoria.com.br
app.w1consultoria.com.br
update-app.w1consultoria.com.br
portixol-table.waiterpro.com
www.wivmi.com
wysventures.com
cf.xf.gl
zestyco.in
onehub.zodinet.com
Other domains in certificate