Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.searchinthecity.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:64:13:FB:B7:9B:40:73:E0:CC:EC:06:F7:B9:AC:BD:3A:06:36:4C:FF:FB:F6:7D:C8:EE:E3:84:C4:FF:74:9F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pharmacist.dev
555labs.com
hmg.agendy.com.br
www.akhilchaudhary.in
weerribben.allsensing.nl
vetera.azxyc.xyz
ost-backpack.backpackfordrive.dev
app.blackheathvillage.co.uk
boomreturns.cc
kwissle-app.buzzel.nl
www.calidity.app
casetools.app
chatmvp.org
stg.co-bee.com
mali-lubaton.co.il
www.gecrc.co.in
www.checkers.cole-cirillo.com
conflate.pk
caption.creativechange.us
cybernetex.ai
assetviewer.cybertrolls.online
dexker.com
dinodigiulio.com
staging.link.drivs.io
www.dudetodoodle.in
certificaciones.areandina.edu.co
darmstadt.einweisungsapp.de
elegantnaturalhairs.in
www.eng-memo.info
excode.jp
www.findshahid.com
fsmr.io
client.gajikuapp.com
www.galtoubul.com
app.gennaker.io
gundo.app
heronislandoysters.com
iclean4u-ltd.co.uk
www.ifororo.com
franchisor.ikriyo.com
inductor.me
www.instabear.app
jannedahl.se
joelt.me
www.johanna-pokemon.fr
dataroom.kanto.co
www.kristenevans.net
www.lakewoodgrill.online
www.lantechcom.io
lascandelassf.com
www.lifano.app
loff.no
csa.londongrp.com
luna.loopbin.dev
meetinspector.ai
www.mikalyoung.com
app.my-tribe.com.au
nanoandvim.com
convert.neoufitness.com
services.sudarsan.net.in
nidsons.com
ux.nijibox.jp
slidenotes.opinada.com.mx
app.orchestra4edu.com
www.owl.gift
joblog.p1st.app
nestegg.partnerhub.co.za
platformwerk.nl
pracawybory.pl
rangamaitte.com
public.roboflow.com
indiretto.rotaractmora.org
saascalc.app
www.sandeshgurung.com
sarathienterprise.com
satyacheeday.me
sazposh.com
admin.searchinthecity.co
admin-panel.seemattireadymades.in
trackmypackage.seshaasai.net
shelfalchemy.com
stava.io
app.steara.com
console.stpwin.dev
tanndlin.com
thaioil-hotwork-frontend.demo.tbcbuild.com
teo.ma
thirdeyestudio.co.za
www.timezoneguru.com
travelarranger365.com
www.treydev.xyz
hangar.turnosweb.app
portal.urbanhood.org
utilssoft.com
variable.app
vendettarossa.com
engage.nienks.voyagernetz.us
www.weddinginfo.sk
wister.app
players.yakoffice.app
Other domains in certificate