Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=demo.sequentialit.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 18, 2025
Valid Until
January 16, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2D:21:76:71:DF:41:C8:04:59:FF:7F:AE:C3:FA:4F:01:BF:7F:C9:EA:D4:7D:33:34:26:D7:36:75:40:36:12:79
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
order-at-table.thebloodybar.paymytable.com
www.adsforge.io
www.book.almondobgyn.com
judge.aviationawards.ie
badwear.store
www.birdsinthekitchen.com
feastival.blueraft.dev
buyfisher.in
www.c911.app
casacoloresquito.com
chancyreddit.com
aspirefoundation.co.in
www.bobsbaked.co.in
beauty.comanda.agency
cryptoaiboost.online
www.csgoclicker.net
cyber3d.uk
www.estudio22tattoo.es
fast-budget.com
feedback-central.com.au
rsg.partner.felporgetve.hu
online-bank.filiall.com
vendor.fusshn.in
development-api-doc.gmocheck.in
green-studio.me
pacelist.ibereciartua.com
dashboard.idbox.app
me.idbox.app
app.iglesialavictoria.org
login.ihk-kompetenz.plus
opentts.inditech.in
inspektorprohlizec.fun
inspector.hive.isar.community
islandaiforge.us
blog.joeshort.net
planets.joeshort.net
jsquestion.in
cartetraiteur.jules-et-john.fr
justoneshot.pro
ebb.kmutt.me
kodaryum.online
kokyuubaka.com
lart-official.com
uat.mis.leaderland.academy
www.lensbook.com.br
lettinggolab.love
www.lomitransport.com
app.lyceum.so
ycombinator.magicexhibits.com
marugame-lunch-slot.com
pwa.millerandsonssupermarket.com
beta.moviola.io
gc02.namala.site
nanoauth.app
link-saocaetano.nibo.com.br
nityastotraparayanam.org
www.oaksociety.co.za
ocsauml.org
orchardvillevet.ca
leo.org.in
padil.store
inmuebles.qro.mx
www.inmuebles.qro.mx
qualitytiling.org
configurator.randboats.com
www.rivervalleycycle.com
rizzed.app
rmiwoody.com
www.rmiwoody.com
katteyutt.rnvhkh.com
pre.runbler.com
safedrops.ae
www.sbc.watch
demo.scouthub.app
demo.sequentialit.com
shushi.in
m.simkada.id
www.soapbox.events
backoffice.sonoma.com.br
sopon.org
www.spensia.com
staging-demo.360.audion.fm
studiodahu.ch
tarunchauhan.in
techtown.fr
thelesbianproject.net
www.tiffanyleondigitalagency.com
test1.tlos.at
tmgremodeling.com
pm.trevorwithdata.com
www.turkiyejava.community
scan.turnosweb.app
offres.urbanpulse.fr
usekopano.com
auth.valuehub-dev.net
werfunds.com
www.werfunds.com
ynovacao.com
www.zarposh.in
zebraautosiskola.hu
Other domains in certificate