Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=manager.sjdxcontest.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:68:EA:99:45:05:64:C9:EB:B9:41:59:CE:74:4E:4D:BC:D8:56:CB:87:AC:59:DA:58:E0:0C:C7:B3:43:85:44
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
proofofsound.com
a-p.ro
redirect.acatar.pl
multibridge.angeldao.org
www.bahama.ventures
app.beralagroup.com
www.brainpath.in
bunfan.games
www.bytelinktechnologies.com.au
hall-of-mirrors.charlie-richardson.co.uk
www.chischiero.it
chucksapp.co.za
d4-d5.net
www.denasbg.com
inspection-s.dev-ltl-xpo.com
diegonavarro.dev
admin.console.for.dinii.jp
app.dockpad.io
www.doifrati.ro
xgzpbkiie07z.easyapp.co
www.eedeutschland.org
www.ejrosie.com
eqlty.co
feminefounders.com
a0gc.foodle.su
hfp.fred.monster
link.giaibai.com
www.goodfoodcoop.org.uk
grantspasslarp.com
www.houseofthezodiac.com
delivery.immsoftware.com
devv3.inseat.menu
xprcolumbuszoodemo.inseat.menu
demo.riskauditor.intechvalue.com
app.investago.com
cloud.invisocorp.com
iturut.com
jovicheer.dev
ptoolonkatu-dev.kesselrun.dev
backend.key2access.com
app.koivu.cloud
go.locationedf.com
www.makoto-investments.jp
matthaddon.org
www.medaxperts.com
covid.mesquiteobgyn.com
stub-app.minna-no-ginko.com
www.monopoliche.fr
link.mymo.com
energyandenvironment.net.nz
client.dev.netlaw.com
www.newsprovenanceproject.org
www.pawsomelist.com
photon.software
piccinini.dev
pinhasov.com
engineering.polymerize.io
www.psyjai-dashboard.com
www.pusheen.dev
stories.ranajahanzaib.com
usileventos.rebus.com.co
www.reissukulut.fi
habit-calendar.roslaniec.dev
watch.rupupu.com
sbenfocus.com
schirwindt.com
schwob-aufm-sattl.de
jira.sealeam.com
shop.selflane.com
shannoneng.com
shchepanskyy.com
dev.shipshap.com
manager.sjdxcontest.com
docs.slicex.ai
www.smarklabs.ca
www.smartsquad.io
sofa-guenstig-kaufen.de
www.sologt.com
www.stefanvott.com
app.stripcss.com
susanlambe.com
sylasboniek.com
tastio.com
www.thewhackycousins.com.au
www.tradeeasy.com.au
www.typo.nyc
watchlist.dev.veritone.com
vishalkhare.com
login.vyompay.in
ns.wakaba-well-being.jp
westchestermusiclab.com
test.willowoaks.com
xlerin.eu
www.yakudoh.com
yesmkt.bo.yesmkt.com
yorga.team
yoyevoo.com
www.zacharyinserra.com
ap.zebull.in
app.zhylar.com
Other domains in certificate