Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.lookrec-staging.work
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 29, 2025
Valid Until
March 29, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:51:56:66:77:84:D9:A0:15:1B:6D:46:61:1A:20:9C:98:12:68:4C:3B:44:10:EE:22:B3:B0:56:C5:47:76:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
opstronomy.com
acoderisneverlate.com
www.agorabali.com
connect4.alignitgames.com
stylo-scribe-ui.askstylo.com
join.atfirstsite.app
campusconnect.atrons.net
boldvue.com
boueki-kentei.com
tictactoe.broccolirecords.com
careocean.sa
cetinkayalar.org
banana.champayne.net
ciudadev.com
www.clokio.com.br
learn.brainiton.com.ua
www.commitwater.com
www.cricketscorer.in
www.csidioceseofmalabar.com
qa.deutschexam.ai
polaroidsprint.matheusrmatias.dev.br
www.dishahospital.com
djremikz.com
links.rooster.drivercopilot.com
drivoslogbook.com
montessori.eleventheye.com
canvass.engagecitizens.ca
vr-hub-arne-farwick.enra.app
app.equation.health
essncc.com
www.exploringsmartmusic.net
exterraspace.com
finlamoney.com
admin.foodfix.co.za
fredmanconstruction.com
animed.fungam.es
garrettmason.me
generalcybernetics.org
api.gethorseman.app
www.grandvaux.eu
www.grantcykovalam.com
www.grotecaquaculture.com
privacidad.gtbilt.com
s.hakyazilim.com
hard2say.com
dev.hone.rest
hust-cv-student-20215505.id.vn
dotdash.internetofawesome.com
jhinsoft.com
www.jisunglife.kr
jpventura.com
laurenogrentherapy.com
learngamedesignonline.com
www.limitelimiteenligne.com
crop-suitability-demo.lobelia.earth
admin.lookrec-staging.work
api.loupetheapp.com
maisqfinancas.app
mediazam.com
app.mine-papirer.no
code.modalai.com
test.mohitbairwa.xyz
hrm.nablasol.net
nbktimes.com
nephrogo.com
www.nerinaserra.com
nicoledebono.com
portal-dev.onestopvr.com
pampolini.com
triopsys.pensioenduidelijk.com
www.pgledlights.com
photocado.com
pihu.life
tutor-app.platute.com
gabigpt.projetoslim.com
gtfit.projetoslim.com
www.pumpapp.app
quantuslogica.com
www.rekdoge.com
ritamkon.ar
www.romt.one
rulosses.com
www.sallyfrancesco.net
scottkrieger.com
www.spokeitthegame.com
www.sportfolioreport.com
www.steven-munoz.info
admin.stoq.mx
admin.svenson.com.mx
switzer.rocks
teledice.app
thesfactor.ca
student.tretrau.vn
www.versify.app
www.vietminiapps.com
app.vistoria.co
www.wavespodcast.app
youkan.io
preview.yourappcreator.com
zwingers.com
Other domains in certificate