Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=data.yaki.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 19, 2025
Valid Until
February 17, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:F0:F5:40:E2:FC:10:A4:E1:FF:D5:43:DF:64:85:DC:6A:81:35:F8:B5:B8:DE:EF:DE:61:D0:4D:2D:C1:36:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pooldatafeed.com
5995studios.com
staging.abishekk.com
cp.abtixco.com
www.activehack.com
www.actonia.co.za
aime-moria.com
akashkrsinha.xyz
asistenciapraed.com
asmedia.jp
www.beautifulbrains.app
angels.bikematch.de
www.bizzysrl.it
www.blechwerk24.de
client.dev.boutiq.app
sp90x.bradyisom.com
account.businessenergyawards.ie
www.chitterai.com
www.cjkaleel.co
codedrip.app
coiffureflores.com
nexion.com.bo
www.communitees.co
relatorio.datameans.com.br
daveypants.com
salon-feras.devbuds.com
www.din-sanitaer.ch
login.dm-jobs.com
usce.ios.edu.rs
elbeecakes.com
apiex-dev.eztable.com
fartdroid.com
fivebitesbakingcompany.com
gocdn.frontfacer.com
www.futurebots.co
www.gabrielseals.com
io.gdgstrasbourg.fr
goldschmiede-ruthguenthner.com
www.gowellll.com
gridvis.cloud
www.hellopress.co
hephaestusonline.com
icansewing.com
iconnectcabildo.com.ar
it2000k69bka.id.vn
www.jacobserroels.com
www.jf-welding.com
kantineapp.nl
kodrs.app
special.korea50k.com
krisstattoo.me
www.lch-mfi.com
lettinggo.ca
partenaire-cic.loxam.fr
maxlivingston.net
maysaloonqatar.com
meistrasirmargarita.lt
privacy-policy.mhsoft2000.net
www.micarita.com
mksanthanam.com
mmmmg.com
resident.mpla.io
mylouverline.com
pro.mymoons.mx
demo.myphotopal.shop
mytip.co.za
links.integration.uat.noprintz.si
nordicnavis.com
app.onepicktipping.com.au
www.optimal-klima.hu
phuritchaya.site
portfolio-youssef-tarek.me
productbases.jp
www.rawrevolt.com
alcaldia4.rebus.com.co
reebok.rebus.com.co
connect-ng-fom.rxoconnectint.rxo.com
sanwo-cleaning.com
www.seigut.app
www.selmane.life
dinerapp.simpexo.com
my.sippy.cloud
kiosk.smartcloud.smartsys.io
admin.softwarebistro.com.br
solorunners.co
console.spam-digest.com
app.thefarmpeople.in
tigersharks.ca
www.toolabs.com
aphp-chimio-hdj-vr.vv.toysfilms-interactive.com
aphp-curi-endometre-vr.vv.toysfilms-interactive.com
web.trackyoga.app
tradingif.com
landing.trcellappmath.com
ubdella.com
v2labs.cloud
www.wasatch.ski
www.welovespizes.nl
wxmw.co
data.yaki.app
Other domains in certificate