Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=one-education-advisors-stage-8.ischoolconnect.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:E4:71:1D:F0:DA:46:76:9E:5D:79:85:D5:F9:84:08:78:BF:9B:47:3A:7E:D3:46:C1:00:99:18:77:CD:17:16
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mobileappster.co.uk
www.act15pa.com
firebase.agnd.com.br
www.andrewmcguckin.com
staging.archipelcontent.com
artilas.app
ashlynndesigns.com
aurenix-cl.com
test.automationtech.hu
avatarcabal.com
www.ayusharyan.com
barkaatulharmain.com
betsany.com
panel.gru.biz.id
bmicalctool.com
bocatutor.me
www.bpgpm.com
www.bracketgapchallenge.com
brainclippings.com
centroquiropracticokx.com
www.chanelmendoza.com
circlite.app
www.codatricks.com
kittycart.code904.com
codewithsayyam.com
bh-app.bharian.com.my
oim.tedxsur.com.tr
xm-dev.coplay.io
css360.co
landing.danielsuhfitness.com
depannagestjean.be
internationalpetsummit.e-agricom.net
www.easyagendaapp.com.br
xh4pm8stkjf.easyapp.co
egalanis.com
investing.elatable.com
forms-stage.enkept.com
www4.euro2006.net
www.exonerate.me
www.eyejack.link
fastechtire.ca
fniprestige.app
www.fromteal.app
garysconstruction.com
admin.gdscdju.dev
getvo2max.nl
beta.dl.gintaa.com
goldwyntech.com
blockhistory-winery.grapeweb.com.au
gspulizie.com
halfmeyer.tech
auth-test.hovi.id
apps.iec-iso-17025.com
ilmsg.in.th
inzeph.com
one-education-advisors-stage-8.ischoolconnect.com
jobxcel.app
joeywilliams.website
kirickp.com
krypsiswealth.com
www.lablogiciel.com
www.linfieldfarm.net
meet-nightly.liveswitch.io
lowbackpaincommunication.com
files.ludosophy.se
freefall.makena.info
museumrealm.com
auth.mvmnt.com
app.myiqchain.net
profiles.onetaphello.com
www.osteopatiaprimo.it
www.panaptic.ai
parceltracer.app
grandcenterpoint.app.ppwtech.com
puzzlegt.com
manager.qurtaas.com
www.qwikpdf.com
adminportal.runxact.com
consult.sabie.ai
app.sacreserv.com
sandly.app
www.scottguillaudeu.com
seco.ai
www.setlyy.com
shrimptech.vn
go.splitcasa.com
admin.sportadventure.app
dev-app.stempl-app.de
stoop.email
satori.tamai.ai
interview.teamtailwind.com
tekanokhambane.co.za
textusm.com
www.tjongatjoe.com
tonfacil.online
unfuckit.ai
aircontacts.vaboma.com
dashboard.valuationadvisor.com
www.vinrichllc.com
basic.app.visuallottoboard.com
Other domains in certificate