Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=bateau.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 25, 2025
Valid Until
March 25, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
01:75:19:DE:40:F3:0A:BC:FA:65:1F:62:73:47:5E:40:4F:AA:38:69:FA:DC:BC:F0:3E:3F:8A:A4:42:AB:CC:4E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-JoVHeYYapsNUuTdp1dCkpA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
puzzword.com
30daychallenge.app
www.activewalksireland.com
hbu.agint.no
www.agoradeng.com
alexpool.online
madurai.anbudroptaxi.com
anipos.co.jp
www.appointer.com
baraban.art
bateau.dev
volleyballbundesligatest.bfsp.app
know-myself.bordonj.com
schlaue.buerger.io
admin.dev.canb.eu
code-snippets.codeenthusiast.com
collingfamily.ca
www.themagictouch.com.ua
www.compensadosnn.com.br
www.cosmohertz.com
craptastic.app
www.daybook.com.au
dersasistan.com
earthium.tech
ierlaaurora.edu.co
www.esfindia.org
fabinho.dev
fleetzy.in
fmmusic.jp
geeboff.com
www.goldserviceid.app
grmarketingadvisors.com
grumium.ltd
h7-tech.com
happyphpdev.com
hived.ai
incogle.com
alpha.instaboard.app
plugin.interplay.io
resume.jasminescence.com
jumanaasrin.site
business.justpay.io
tic-tac.kulakovdmitr.com
www.l-el.dev
www.leemcrae.net
clients.levita.app
manishsharma18.in
memopia.live
mlabs.fun
www.mlabs.fun
monicas.day
clientes.muevo.com.ar
www.nattamelding.no
alerts.nba.com
pic-bet-at-home.mentor.neccton.com
www.neutraljourney.com
www.nexaflops.com
admin.nextorder.com
nicoinneverland.com
www.niwat.co
www.noahnkr.com
portal.ovinopro.com
web.payoll.io
www.peopletransformtheworld.com
platformmosaic.com
www.playther.com
prepisely.app
links.purajuku.dev
www.raymondbuildersinc.com
buyingoffice.rcloud.dev
articon-dev.rescuesol.de
www.resultados.live
www.sb-dt.com
secondgenelectric.com
seeclub.org
fn.simply-how.com
single-page-websites.com
www.sm24h.com
www.sohagphysics.com
solhiart.com
somboonmotor.com
auth.squadle.com
ncp.stang.im
alpha.starmemory.ca
stephanietuerk.us
crm.demo.styloml.com
www.synth.sk
techcora.in
staging.trackletic.dev
tylerdarsey.me
undeadescape.com
new.unoperate.com
valeriovelardoadvisor.com
verifywithsms.com
voz.votei.app
imageshare.whealetech.com
www.woodwisetermite.com
www.xenna.pl
go-quality.yodo.ch
app.yovecino.es
Other domains in certificate