Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=l.teho.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 20, 2026
Valid Until
July 19, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:86:D1:8B:7E:57:2A:26:E2:04:AC:31:15:77:BE:53:DA:D6:9F:7B:79:DA:2D:B3:D5:A3:E1:E6:DC:12:17:11
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pathk.com
app.123abc.com
actonvaping.link
adamcodes.dev
admin.agrosys.in
aidanish.com
www.alan2.com
alexanderschwartz.me
link.apollo.no
asb.run
askchefapp.com
www.atacanhayvancilik.com
autoparteslarueda.com
kia-staging.autoroot.ca
docs.backbone.tools
bharatparikrama.in
toolbox.bigfm.de
www.blackjack-strategy.co
bosols.com
bytheyardenterprise.com
www.capitalprojectsportal.com
casual-crossword.com
gt3-dev.caterermanager.app
chrisbp.com
login.clusterfuzz.com
asset-manage.demov3.contentfabric.io
cryptsnaps.com
tms.culmas.io
links.curatedcare.com
decouvertesnumeriques.com
www.dhimasprajaya.com
x2buatrrw9.easyapp.co
emmflowers.com
epigenetics.io
www.esperanzawellness.com
fasalrahman.in
fillmycup.app
s.formito.com
blog.frison.ca
glitchcloud.in
goseero.com
www.greenootech.com.my
www.hotelhortensia.it
hubertjan.de
hypermatrix.ee
collect-coworker-test.digitalse.ikea.com
www.ionut-t.dev
ironappsdev.com
joshdale.net
kachaka.life
links.medical.lactapp.es
lizdresser.com
uikit.main-echo.de
www.mainhe.ro
www.makorelaboratories.com
admin.planeapp.mattmartin.xyz
medhawi.com
assistent.mediaperformance.no
procesos.megasanduche.com
qas.metryx.app
yachtingventures.monacofoundry.com
myaicfo.co.kr
games.mycloudvip.com
istrang.n7cloud.com
game-assets.dev.hub.novafutur.com
nuts-n-noble.store
onedayoneword.net
www.oneweekinaprilfilm.com
www.parallel-networks.com
oita.pedidomovil.es
link.pulsinn.is
www.pyramisingenieria.com
quizmarks.com
admin.rankmeon.ai
www.rbs.lol
beta.realsimplemacros.com
hunt.redsols.com
www.revel.cloud
reviewmyprofessors.com
square.frontend-challenge.ronne.dev
www.letmeask.ronne.dev
shredreel.com
www.sloppy.dev
sorteiodagalera.com.br
www.sucolab.net
sutakore-tokai.com
www.swankeypankey.de
bodareyeslara.swanmoments.net
www.tamaletalk.com
www.teamthrive.io
l.teho.app
thehomelucky.com
app.therealpablo.com
threadcity.fr
beta.trymycar.com
wedash.digital
www.weedsoldiertf2.com
pwa.wonkytech.net
yaashjain.com
www.zatrek.com
Other domains in certificate