Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=promete-it.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:D2:97:C5:73:D1:8E:47:1D:32:C9:BB:BF:6C:9E:A6:0A:82:2C:BA:5E:94:39:F7:0E:B6:6C:8F:20:E6:57:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pre.ilq.cz
andyli.me
hmg-adm.aonderole.com
hmg.aonderole.com
aparnia.com
appliedboard.com
opencall.artinthestreets.org
artzily.com
www.barbershopmayfair.com
billthecloud.com
limo.svr.biz.id
boltrik.com
boys6.nl
test.dynamiclinks.bsit.com
bugzero.io
www.bunalert.app
www.chalupa-radimer.cz
chapterme.co
client10.citadel.tools
vonext.co.kr
www.benter.co.kr
escribidor.contramuro.com
auth.craftytrack.com
www.cybertruckwiki.com
expomaratondelamarina.dashport.run
maratonsaltillo2022.dashport.run
corporateweb.odfjellterminals.dblandit.com
deepfakex.ai
divotly.ca
q2-myreturns.dpdlocal.co.uk
www.dragonsalley.ca
elgasoos.com
llulm2.backoffice.emporix.com
www.expensehive.com
www.ezspeek.com
fantasyjams.com
firmwork.pt
www.fog.haus
beta.g17.eco
getpigeon.app
glympses.cl
www.goclugo.com
app.growity.me
harristhomas.com
hmh-waggle-teacher.com
squirrells.horseriding.app
www.indreskattekammer.no
www.juttame.at
star.krishnan.app
www.layerized.com
leadjemltd.com
lecipe.com
soriana.livepanel.co
loggable.stream
app.matrixappraisals.co.uk
developers.momoapp.vn
samtrygg.demo.movello.se
app.mudeleesti.ee
nidnau.com
www.nidnau.com
www.onyourway.app
ornaghia.it
www.paradiplomacia.org
www.personaltales.com.br
peyonic.com
promete-it.fr
www.prontissimo.app
staging.pxln.io
qrnavi.app
www.queueme.io
quintasteakhouse.com
www.dev.rallygo.eu
rankalyst.com
www.revolgy.co.uk
www.saef.co.za
elgin.scouthub.app
share-wood.hu
my.sippy.be
play.skilltech.team
sloneczna.app
www.solbotix.com
www.spiffyventures.com
dakglong.dbot.stedu.vn
studentsvoice.co
talentmotive.com
www.talentmotive.com
www.tangelder.com
www.terrasvenue.com
textbehindvideo.app
www.thewisdomcircle.org
api.staging.tipgenie.com
toottogether.com
www.toottogether.com
tresors-sucres.com
relaunch.tutorate.com
www.ukuchacha.com
unanichikitsa.com
voyayge.co
wartaonline.pl
contractor.develop.eu.wowworks.org
Other domains in certificate