Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.neion.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:E7:E6:DA:64:6C:34:A1:7F:E5:D6:C6:97:19:76:29:D3:EC:0D:7F:66:37:C9:10:F2:FC:03:43:FB:CC:31:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ofek.phd
aaron-gee.ca
abacus-stone-sales.co.uk
www.aichemist.kr
app.appflo.io
appjeplekje.nl
artifexremodeling.com
www.ateno.systems
www.beastrounds.com
www.berufsbetreuung-hoffmann.de
www.blubbler.com
www.brimhq.com
brokerjulie.com
glencovehospital.careinstructions.net
www.cashless.fun
cdc-jp.com
changshengrealty.com
storytelling.chintseng.com
www.code-werk.ch
coder-bot.tech
agility.com.vn
consutleg.com
www.consutleg.com
craveegypt.com
crdls.com
www.csosi.org
www.dclebd.org
www.defacelabs.xyz
magic.denizcoker.com
designpartnerservices.com
donamfilm.com
www.ecabas.biz
egety.io
excellencyguidancear.com
www.feedsmanipur.org
fluidlabs.xyz
goki.flurinhunger.ch
www.francofontana.com.ar
www.gamingonthe.rocks
www.gdgyyc.com
app.gghud.com
my.grace.church
join.hiyak.com
hoadon.hosodientu.vn
www.hotelsanlucarossano.it
galleries.idew.org
img.jario.com.br
www.jessiepepen.com
home-dashboard.jjax.de
exemptions.jumpingfoxsolutions.co.za
kahdeltransformationservices.com
city-3d.karla.ai
www.kolarcik.cz
koorti18.ee
krawcz.uk
lastadiummap.com
leejacobsz.info
app.levelup.dental
luciano.work
www.mattstockton.dev
aretaeio.mayamd.ai
metroartapartments.com
minymal.app
metrokingscourt.motionwave.studio
staging-member.motobase.jp
websitetemplate4.moxie.one
www.mpriam.gr
app.neion.co
dev.nogiro.net
nokwary.com
accounts.nomelome.com
colegio-medico.noovo.cl
www.odmrestaurants.co.uk
orizabal.ca
partner-staging.presscleaners.com
fr.zappboard.quickcommerce.org
www.ranjithkeerikkattil.com
www.restoguru.in
www.retropetrol.se
www.rummycreed.com
app.rytr.in
admin.scanhow.dk
www.shelterapp.org
admin.skilltech.ph
skunk-team.com
dashboard.demo.smartwage.co.za
app.smoothy.co
www.register.syllabus.gr
profile.tapvi.com
tensorbox.ai
tessheract.com
theway.works
www.tillingcapital.com
app.tingme.io
totalqualitynursery.com
notify.untilit.works
www.wayz.app
app.wefix.co.uk
app.review.winner-english.com
www.youthfaithgroup.org
Other domains in certificate