Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.strim.id
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:69:B9:B4:2C:73:82:7F:E2:0E:0A:89:65:42:83:26:C0:B4:08:AB:02:76:D2:A5:BB:D3:60:1B:C6:C2:09:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
orryfinaltouch.co.nz
104.fi
11520796.stratics.io
food.4xpress.com
dev.5revive.com
api.abracadalo.com
ace-synergy.com
www.afercam.com.ar
www.airmechanicalgroupinc.com
alacrox.com
arashveer.com
www.attilavago.com
barcodebee.com
resources.bctians.com
benjaminaster.com
my.billed.app
www.blocs.se
bollywoodmovies.us
supporter.charitysuite.uk
laptopgarage.co.in
tenant.resma.co.ke
commercecitysentinel.column.us
artist.colytix.com
www.nova.com.ec
congdata.org
crosshare.org
investor.crowdlords.com
www.cryptomasonic.io
ctrl22.ru
www.dart-board.io
www.davidistrati.com
davidturnquist.com
www.devprompts.ai
app.dianadigital.com
dots.tokyo
www.dxdriving.com
eizir.fi
epic.llc
terms.exploradogs.com
uk.f5wc.com
falsify.me
rsa-ecom-app.frt.vn
app.futster.io
goldway.tw
auto.greensprout.com
evaluation.release.haleoclinic.com
www.hopedwell.in
www.ibaifoundation.com
chicago.interlockhealth.com
advisor-success-demo.ischoolconnect.com
www.jonasstjerne.dk
kabea.co
dlink.lavozdelaopinion.com
www.libanam.dev
sos.mesbro.in
meyer74.ch
miaosuits.com.au
med.miradores.co
www.mycucommunity.com
agent.nextlead.io
www.nutekno.com
www.odxpo.com
oooooooooooooooo.cc
blanderiet.ordreplan.no
www.parashkevov.dev
pay-fast.org
phoenixdigitalhub.in
pilestredet29.no
www.pizzabyluca.com
internal.poured.us
www.princetonwrestling.com
app.produp.co
cogasucre-admin.pujasweb.co
www.qarious.com
api.qpos.me
www.saturdaysundayfilms.com
www.securitysynergy.io
drawing.senolab.org
sensoryadventures.app
www.shoppio.co
silentbyte.com
survival-401k.solerabank.com
app.spesesanitarie.it
dev.stagingsb.com
www.stand3lone.com
www.stoneleft.com
app.strim.id
business.swanmoments.com
syntaxeinteractive.com
talpa.demo.talpasmart.com
sevengirls-admin.tapforce.com
domestic.texone.app
tomasgoncalves.me
link.tradecentre.io
vademecum.gt
app.vapourex.com
krishnagiri.vishnutaxi.com
nilgiris.vishnutaxi.com
app.womenssafety.scot
www.zergpresent.ru
Other domains in certificate