Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=hatyaicity.iot.in.th
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 28, 2025
Valid Until
February 26, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
79:64:EC:13:8A:D8:73:E2:67:C3:B6:4C:2D:D3:AC:DF:96:FE:D5:32:55:D8:FB:11:7E:15:F8:DD:EA:57:79:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
personalitytest.co.kr
11520808.peerly.app
531.madeit.lv
abtestlist.com
www.acoperis-sdp.ro
www.adrit.gay
aureliaenvironmental.co.uk
www.aussievpn.com.au
www.aysuhukuk.online
planner.bctsoft.net
www.beemer.co.za
www.bence.nu
brewfather.app
captivate.games
ceg-electricite-marseille.fr
www.chandaluri.com
firebase-dev.cleanfox.io
cogler.app
testing.complia.dk
www.cryos.net
dailygridle.com
datacube.io
system.datakora.com
vorlagen.dein-ruf.de
dev.ecof.online
elevateu.me
ad.englishwing.com
www.freecodingschool.com
gcnym.com
getfanatics.app
gowthami-will-u-b-my-valentine.site
data.gripactive.pl
hvaskjerimidtregauldal.no
hyphenrealty.in
hamann.credito.ia.br
hatyaicity.iot.in.th
www.colaboradores.inclub.world
intr.gg
if3.investorfuse.com
www.staging-vacations.k-9apps.com
kinvii.com
onboarding.klouser.app
www.konekoura.fi
wedding.lazy-y.com
www.liviyacabs.in
applink.midaia.com
blueprint.mo-blind.com
lab-staging.mobilab.ai
testing.monternos.net
app.morgen.so
citylegends-dev.mv-online.nl
kuliah.andiagussalimaj.my.id
admin.mypoke.ru
www.mytrinix.com
admin.staging.napandup.com
app.nirio.fr
acompanhamento.nutrirjp.com.br
onderzoekportaal.nl
www.onderzoekportaal.nl
www.otpkey.com
oussa.dev
app.penny.de
psclient11165.philanthrosphere.com
planflow.link
timy.pointer2.com
www.qtron.qtronix.in
ravanagemsandjewelry.com
rehmanportfolio.com
lost.rspcasa.org.au
quest.samay15jan.xyz
www.sapuboltinn.is
speedpayadmin.sevanakendram.com
reg.smk-usa.org
vision-demo.softsmile.com
sonbei.app
startupjobs.uk
stjulefrokost.com
report.storebariblu.it
www.tabian.co
app.tablesonfire.com
tg.tallyfor.com
onboarding.teamtelefoon.nl
h.tech-mori.cyou
www.tenamgames.com
www.thomas-levendig.nl
thomasjng.com
auth.tidtabellen.com
timelapsecorp.com
timemaiden.com
old.trackletic.app
trustonetech.com
varn.app
vinecloud.co.za
voxlabs.io
app.wayla.com
webfieldmanual.com
survey-system.wen8health.com
www.xclusivlux.com
www.yourdreamjobinaustralia.com
www.zetti.app
Other domains in certificate