Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=pit-sy.uno
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
33 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:E0:8D:AA:94:7A:C9:E0:31:BA:9F:84:2F:EA:AA:ED:B4:3D:79:36:C8:96:56:8A:62:30:8E:FB:3E:39:1F:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-AEWcUPFUDusaJTsKAtjRrg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pit-sy.uno
fb.cv.alirezad.ir
ambaquasar.com
www.ambaquasar.com
www.ant.watch
apeltardonmayordomia.pro
arabellatours.com
automore.co.za
www.automore.co.za
binn.com.br
stacktrack.bode.one
www.bootctrl.com
archive.bryton.studio
www.portal.centrictech.net
duordle.chauhan.nz
checkform.nl
www.claroenergiasolar.com.br
www.ainus.co.kr
y-go.com.pa
www.maestrodev.com.tr
stylegenie.com.vn
onedrk.communicationteam.de
numerio.complete.ist
comunicak2a.com.br
crescentmines.com
d0m.ru
deeplink.hasselt.delcom.nl
pioneersclub.dreamven.com
ungdung.easycredit.vn
elevengroup.in
elite-medicalcare.com
www.elite-medicalcare.com
englishbtoc.site
eqr.one
kanbancasual.fasesport.com
gamesfxmaker.com
ganeshmarg.in
getfocuskitty.fun
www.getfocuskitty.fun
beinghappy.goldenvoices.com
www.grcarmotor.com
haagakuppi.fi
prematricula.helius.com.br
askultra.icompass.ai
ironmnd.com
hr-admin.itlicious.be
chat.jamku.africa
platformer.johnnyruz.dev
pltfrm.johnnyruz.dev
jsolutionsnext.com
welcome.kalpakrushi.com
working.kasoft.vn
numbers-go-up-prototype.kazatan.games
www.kotobagames.com
app.lamia.vn
lps.lucafloesser.me
www.massif3d.fr
mnmls.co.jp
business.muud.app
www.mydnight.net
sassollc.mytrace.com
namson.store
nova-law.com
oksi.fi
ola.olugidan.me
otterdeal.com
www.otterdeal.com
painelchapaamigo.com.br
perigarealestate.com
pijnvrij.nl
www.pioneersclub.io
sistema.proconv.com.br
www.provinzrennen.de
panceposters.raymond-price.com
renncora.com
www.rgkonnect.com
saef.co.za
www.santinobrillan.com
sboshnailandbeautyspa.co.za
www.sboshnailandbeautyspa.co.za
uat-billing.advantage.slade360.com
test.slotenmakeranton.nl
spesenbot.ch
www.studyamigo.co.uk
www.sufa.es
apps.suhaib.in
swaizila.com
bodaumanzorhandal.swanmoments.lat
tarrergaz.ae
www.thejackwny.com
www.tiffaniemartin.fr
tinkinest.com
tipsymonk.in
unsubscribe.unglobe.it
www.ventoes.co
maksiwausa.verustecnologia.com.br
sandbox.app.volta-back.com
sandbox.app.voltaback.com
mytime.xnetworkaz.com
zvornikputevi.com
Other domains in certificate