Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kbat.acuizen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:88:97:00:9D:92:4E:F6:0B:21:83:2D:CD:B8:08:A3:85:55:C6:BE:F3:A5:90:4E:74:B7:64:85:18:5C:B1:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ravosecurity.nl
app.365truckingexpo.com
kbat.acuizen.com
acyp.fr
asset-ljm.net
astral-infotech.com
www.bancodeagua.com
app.brudis.es
app.bushnellgolf.com
web.buspal.net
www.charteronesolutions.com
billing.chefstein.ai
void.co.il
dazo.co.in
katanasushi.com.ua
join.deeplatform.rocks
dennis-mwaura.com
www.deutschi.app
video.dev-set.live
dhirunand.com
digitalsocialweb.co.uk
auth.divshot.com
www.dnoprojectenterprise.com
www.dolcedaniels.com.mx
www.easyscratch.app
www.errachidia.online
www-fbh-dyno.exportoutlookmacmail.com
ferlante.it
dashboard-dev.fhinck.com
www.flexfiteurope.com
www.flunum.com
fs-glasstech.co
st.gera.fan
try.getblood.com
shop.goopay.app
medflow.h-n.tech
www.habit360.app
habtoz.com
handsmade.info
www.hostingemails.com
admin.humilylab.com
icpsig.in
idraulicoasanremo.it
www.instantapp.solutions
iteleportmobile.com
jadex.dev
www.jaei.in
jakepaulmiketysonfight.com
jeremyenglish.org
jut.farm
app.kargoroo.ca
www.kathillisbooks.com
projects.kraptix.com
launchywidget.com
learnfrida.info
liminal9.space
livingroomparty.com
toy-swap-admin.dev.logicwind.in
www.urbanrevivo.londonretailservices.com
discover.app.luminarlab.com
maxxus.pl
mdshield-staging.medicosconsultants.com
portal-dev.medmobile.health
console.meiliiapp.com
cefs.mmpg.site
www.nexonous.com
noditt.com
paniklab.com
paramind.dev
paxocare.in
ordering.pearpartner.com
choice.performolabs.com
www.jilswebapp.pikkopay.fr
auth.profai.io
quizzle.it
rajatvishwakarma.in
requiero.app
rumboacasa.org
encuesta.sanaemedical.com
sbw.digital
scottsecretsanta.com
stenhousemuir.scouthub.app
link.skillcathub.com
dr-morshed-ahmed-khan.sundiabetescare.com
give-staging.swoovy.com
sympllizy.com.br
www.techokids.com
tekneto.com
www.themorningcatalyst.com
yonetim.ucm-makina.com
varpblock.com
web.vasrefil.com
whartonfbla.com
wissle.com
www.wordzmania.com
youssef-salem.com
www.zachfleck.com
www.zencom.com.ar
my.zenport.io
transavia.zenztech.com
Other domains in certificate