Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=proper-ly.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 11, 2025
Valid Until
February 10, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:7F:A8:A8:73:FC:C8:9A:87:03:6B:C4:F5:EF:06:30:1A:54:86:34:FA:CB:0F:8D:51:6D:6E:1E:1B:61:81:A4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mariachipower.com
sagamihara-signage.alfalink-app.com
manage.altcollision.com
andrewtheiss.com
www.andyreyes.me
asseths.com
school-app.eco.atomx.asia
www.audisam.com
axeledgar.com
link.battlemachine.io
bitnetit.in
brittanylau.com
display.demov3.contentfabric.io
www.crmrepairmobility.com
www.cutoff.cc
streamview.divconcontrols.com
www.doorish.in
dotlabs.lv
drshahidabegum.com
host.app.effiquo.com
felos.cz
cavenoire.fi8.xyz
fintechmicro.com
www.gdglebanon.com
gostorystudio.com
reports.gosunergy.com
history-daily.com
app.hustleshipja.com
daoduytungduong.id.vn
app.imobiliarianumes.com.br
imobilitynow.com
firebase.instacred.dev
www.intelautosys.com
serhii-mariana.invito.link
www.katharinablass.dev
skills.keyskillsacademy.com
www.krishanmistry.com
walmart-cat.lapzo.app
matthewscoresby.com
app.maudilineshipping.com
mdevans.me
www.memoica.com
www.milladssupermarket.com
mintlio.com
www.mosheurrahman.co.uk
narenanandan.com
ncrfood.com
nexifies.com
www.ningle.dev
www.app.nondemics.com
nullmau.com
officialalias.com
omniplus.io
onshop.lk
tests.orientaction-groupe.com
app.owiquickship.com
packlabid.com
www.penn-central.com
prachyaschool.com
principics.com
progentech.com.br
proper-ly.com
pstryder.com
app.quickdox365.com
villela.quitaboletos.com.br
reforlux.com
www.rehobott.com
rexyung.com
robingerlach.com
www.samaitch.com
sarah-guengoer.de
seacastlepetroleum.com
shallowfordplumbing.com
softaintit.com
speak-easy.net
storymotion.video
synergy-app.net
bocchi-the-crane.tauhoo.dev
mugs.teammochi.com
thecraftry.com
app.thedutchuncle.io
thegiftplus.in
www.theopenplaybook.com
test-v3.tecore-client-cdn.timeedit.net
transpactrading.com
trartist.net
pwa-danapoint.trueomni.com
unitekra.in
app.unjobs.org
learn.unrestrictedprovider.com
vasukiessentials.com
victoriastil.es
www.wardspy.com.br
auth-app.we-rule.com
www.weagileyou.com
www.xfreemedia.com
kongeluk.zaoletu.com
app.zingoy.com
zipf.co
chameleon.dev.zoocommerce.tech
Other domains in certificate