Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.catimbafantasy.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:73:13:09:34:80:D6:B5:3F:BA:45:B4:BB:13:07:C8:BF:69:B1:6C:A9:F9:13:73:D5:23:25:A7:6B:30:AF:FE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
phyathai3-be.plaping-dc.com
0908135888.kasoft.vn
dev.command.adionatech.com
uthox.aimcomely.com
alexwoodhouse.co.uk
app.anaboundif.ma
a.angelystor.com
www.arkerlabs.com
ca.bucketeer.io
kiyomi.cartadomicilio.es
app.catimbafantasy.com
www.cheerswisdom.com
crowdform.studio
www.cwcabinets.com.au
dimarofolgarida.app
onconnection.drtis.com.br
kanye.dwane.io
gry.dystrykt.lt
www.eaglegroup.be
super-admin-stage.enkept.com
evolvecontractmfg.eprvmnt.com
www.excelheavyduty.com
game-survey.fahsl.io
adobe-staging-ideacloud.forgedx.com
dev.business.getpigeon.com
redeem.gizmoplex.com
glimmer.icu
app.goldenbrokers.my
www.graineat.com
www.holoside.com
to.huey.co
burdakacademy.indiandevelopers.org
www.iyawali.com
jesusgarciase.com
www.jordinebot.me
juliacamacho.com
www.justinsalcedo.com
auth.kanban-cloud.com
www.kennethbrewer.com
www.marigold.kunath.co.nz
link.backoffice-test.love2point5.com
www.luciaellan.com
www.magicshield.ca
www.maticco.com
www.mehraz.studio
quiz.cl.moons.rocks
mountiecamps.com
app.mtnra.com
www.myfndapp.com
dev.teacher.exam.mylearned.com
cloud.nationaalerfgoed.nl
www.nationalacademicbowls.com
neoplumes.com
njmphotos.com
www.opentrails.hu
www.overlay.market
zaragozabambu.pedidomovil.es
pedixwpp.com
wegoshop.piticommerce.com
bestellen.pizzabox-app.de
genevaglobal.portal.plenadata.com
prmovie.jp
www.proviewcloud.com
www.raid.lt
www.rcpmovil.com
cad.redriver911.com
repzoapp.com
rohanmehta.com
rpisoni.dev
app.rsanetwork.group
tracker.rustycrow.com
sameinc.jp
www.sanmiakinlabi.com
saylynconsulting.com
dev.securetix.app
www.semplates.io
block-avoider.sindre.io
demonstracao.bioponto.sistemasnemesis.com.br
mapmystudy.snapmentor.no
snaptab.ch
www.soliditynapratica.com
spiritimageband.com
app-createsd-dev.stailer.jp
suniltechtips.com
click.swb.de
swingtoplaces.com
www.theblacksunclub.com
www.theblushforum.com
www.thesoftmechanic.com
efp.tickbird.net
admin.tilawah.my
tipsy-developer.xyz
www.todayweather.co
www.typing-up.pro
app.vestigo.lt
waiandshan.com
watchthetimer.com
www.wcupacampsandclinics.com
admin.workhub.site
player.youshop.com.br
Other domains in certificate