Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.caligolabs.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:31:0F:78:8F:A7:24:80:63:53:44:F8:A3:BF:F9:3E:EF:A2:7A:9F:18:7F:26:F4:4F:7B:DD:32:F8:FC:D1:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
middlecar.com
ajukas.tech
www.amiprojects.io
anagramfinder.co.uk
redirect.apap.pl
edre.energia.app.br
courses.banoqabil.pk
blaze-consulting.com
bullshit.wtf
www.caligolabs.com
chief.clau.io
mybasket.clau.io
platform.cloudious.net
body-weight.dh.co.at
staff.greenmarker.co.in
nanistudy-dev.oneclass.com.tw
www.corky.app
www.countwithme.com
portal.test.crilabs.net
www.ctkca.com
my.dashbooks.app
acervo.dentalpress.com.br
img-s.dev-ltl-xpo.com
divergentes.online
downfour.fun
q1-collections.dpd.co.uk
q2-nps.dpdlocal.co.uk
e-arch.co.uk
expo.fishfacts.fo
app.florasense.com
www.forro.se
www.gertrude.tech
www.getrandom.one
getunstuck.app
www.greener-buildconstruction.co.uk
report.grmechanical.co.uk
www.haeywa.ai
www.hilker.app
icamping.app
www.imcomex.com.mx
app.importcenter.net
ivansifrim.com
www.kohinoordiepolish.com
app.komerzio.net
polymer.lirujia.com
www.lynnandedcarl.com
residenthome.madhive.com
maggie.work
mdvs.mn
medoc.com.mx
events.mercyships.org.uk
app.moonlightapp.co
www.movation.sk
firebase.muzigal.com
adminsite.nivethacrackers.com
clemson.nkportfolio.com
www.northmiamibeachpermits.com
nutekno.com
serviceavtale.omnicar.io
alpha.opengrid.xyz
www.partydredge.com
paweljonik.net
afswealth.portfoliolink.co.za
purplelabs.dev
www.quadralyst.com
obc.queliga.com
id-logistics.rabot.us
www.rensvis.dev
jc01-cal.riyo.io
ryan.romanch.uk
roundu.uk
rubion.it
samatli.de
www.scaevola-conspiracy.com
securethebag.io
www.shuttlepay.jp
registration.test.skipr.ninja
www.soulcodesolutions.com
www.spiceauntie.com
spider-lake.com
online.sreeayyappatemplevasco.com
ezequiel.stockers.app
11521261.stratics.io
studfinders.org
www.talkingtubes.art
the-challenge.app
thesimpleclub.net
thesperia.it
www.thestacks.io
www.vazquezconsultores.com.mx
cms.vietyen.net
ida.vildugiftedeg.no
test.villagemap.net
www.vinamravaani.com
www.wearelomo.com
mvp.wecare.ph
welinq.xyz
windoe.link
znajdzmail.pl
zomio.com
Other domains in certificate