Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.clipbooking.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A4:C4:18:53:CB:0D:B5:BE:06:CE:7C:52:75:1F:99:F8:C0:38:EC:70:86:4B:2F:D2:71:29:2A:14:C1:9E:65:CE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
metaverse.relentlo.com
user-dev.1kmwine.com
dev.app.aatlas.com
links.aladin.today
www.appdetonator.run
system.autoecolebouharat.com
www.azevedofernandes.eu
bodyboon.com
booking.caa-ahm.org
che.ma
app.clipbooking.com
www.cooperhomes.co.uk
cyclinapp.com
ddiaflashcards.com
www.digisailor.uk
www.digitaltradingcards.com
www.dogestudios.com
www.drsyatech.com
admin.dukesresidence.com
egroups.ele.vc
election-monkey.com
ewtstake.energywebnfts.com
www.englishtenses.com
evnt.co.za
stage-wrh-portal.exitest.com
www.foodtryb.com
beta.admin.foriu.mx
go.froxt.com
ganpatiwovenpolypack.com
getkrakengames.com
www.gmsdms.com
www.grandmarqueebickley.co.uk
www.hexxedgame.com
histoscope.com
www.hodlapeclub.com
www.hotcryo.com
www.hubover.com
payment.i-kasa.com
www.iceproofarctic.eu
nguyendinhvu.id.vn
www.ihax.org
inno-tech.dk
imm.itopia.com
jackklein.dev
fusui.jenoszabo.com
joi.land
jorisvanrheden.com
dev-link.kirbrandiman.com
elaringsportal.kompetansenorge.no
gestioninterno.kydsapp.com
lipstate.com
share.listforge.club
www.losbandios.com
www.lutfi-architect.com
supermercado.malvre.com
manasvoyagers.com
man.bot2.manodio.com
prace.marcafranca.com
www.mariastancleaning.com
dev.marvlist.com
mashoun.com
matt54633.com
app.maverickworkout.com
mctactical3d.com
food.mercadomovil.com.mx
www.millabox.com
admin.minkommunapp.se
mliparireflexology.com
mobile302.com
portal.mypandaapp.com
www.nanwannawatresort.com
console.naomichat.com
it.netenglish.com
www.nf-aircraft.com
nikolanaumov.com
selfservice-staging.oresundpay.com
parkinsonaporteaperte.com
www.paulahuevo.com
photoanywhere.com
phthalocolours.com
www.pololentes.com.br
academix.quarkideas.com
www.quikerhaus.de
rezept.li
engage.rocketa.co
www.rohitsardessai.com
register.test.roklen.cz
development.sago-hub.com
www.sergeibalakin.com
www.shuo.jp
www.sipofcode.com
auth.therealresq.com
thisvaginadoesnotexist.com
admin.timeo.tech
tinydoggos.com
auth-cart.valleypos.com
dev.vars.ninja
go.venuecrew.com
vincentcombes.com
account.vitus.vn
Other domains in certificate