Open
Cached
·
10h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=testing.croppaco.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:81:4C:02:F1:44:BC:C4:C3:2E:48:0A:58:F5:8F:DD:AB:BE:EA:D8:01:1E:AA:E6:C6:E8:2E:9C:45:44:FF:CA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
payments.buksa.app
prod-b.afrocart.ca
connect.agilefox.app
hdn-summit.aikata.de
ranking.anpix.com.br
admin.app-faststaff.com
www.asantechcube.com
attwoodpd.co.uk
www.bharatbheesetti.com
bitscheduler.com
skeely-dan.boldpenguin.dev
bony.space
www.brewree.app
www.canadadrivingtests.ca
textiel.cao.app
chemicals.capgrid.in
cardgifty.app
carrotcreation.in
cenitium.com
dev.cerchiorosso.app
testing.croppaco.com
www.crosswyrd.app
www.cukurovalezzet.com
dalala.app
dessin.it
www.eastwing.aero
www.endofrun.app
facility-test.energic.sa
tradeforgood.equix.app
oi.ezturns.com
app.facetoned.com
promo.fanni.sa
www.farmaciadeguardia.app
analytics.gabismartcare.com
www.gambrela.com
gbl.cz
app.getactively.app
www.goaconnect.com.au
app.gymbook.in
habitatconstruction.ca
hamdanfsc.com
staging.heroesbibletrivia.org
app.hotelspot.ai
neo.hypergro.ai
impex.app
inibby.app
www.jjean.io
www.justosiris.com
app.kbbconnect.com
accounts.stge.keap.app
backoffice.lastgamemaster.fr
www.lensbot.net
www.limusicaja.com
admin.loanpecar.com
ordo-dev.lvdev.net
archive.matthewtse.com
melhoresdestinos.app
app.meritcoin.com.br
www.midaas.com
app.minforeningsapp.se
www.mkare.com
testing.monitoro.app
haarlem.mylivy.nl
www.niftydos.com
www.nunmaan.org
app.uat.non.ownhome.com
www.panktishimmers.com
admin-demo.pej.se
www.portal.rentals
www.preppylearning.com
pressance-loger.com
www.prinki.com
ptclicense.com
www.rcbgroups.in
www.reactjava.io
vouchers.app.revagon.com
www.saraj.dev
sigmadeltamusic.com
www.sourojyotipaul.in
sowl.app
carrental.stafftraveler.com
www.staterapower.net
stellajp.net
auth.stressy.app
www.td2.app
techblg.app
notjusttamasha.thediners.in
themeasuremate.com
www.thepiratedev.com
www.triple-threat-athletics.com
troytomasch.com
tszhoip.com
www.urbanistmedia.com
verdurelogic.com
whitewizard.mx
www.yannickdjoa.org
www.ynotmath.com.au
yog.dev
zedlets.com
tracker.zenithr.net
Other domains in certificate