Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=link.dev-cs2.comsuite.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 26, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:B4:91:6F:4C:64:E8:E9:38:49:E1:C8:9D:22:CB:60:24:77:C2:28:0F:E3:5C:0D:2F:71:C6:5C:35:95:85:29
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
roller.mseefelder.com
facebook.11yearsafter11.nl
2023.hacklytics.io
www.acaperap.com
kiosktest.aigens.com
signagetest.aigens.com
allmedi.de
amplisend.com
app-qa.anvyl.com
demo.aorborc.com
appacus.hr
arcinternational.co.za
atanico.com
hit.avivhaas.com
azadf.com
app-qa.basehq.com
sarthifront.bcss.us
www.beezai.eu
dashie-dev.bennybutton.com
v2.biolanglobal.com
bitwav.org
clanup.blackarctic.studio
fire.chiletur.cl
proxy-test.cipherhealth.com
qr.clampit.co.uk
jpeduresearch.co.in
classroom-staging.codingninjas.com
email-signature.coingate.com
1app.redone.com.my
web.bank1.pnpl.com.np
link.dev-cs2.comsuite.jp
adm.condominiosaojoaquim.net
www.corazon.coffee
dealers-support.cox2m.com
development-economic-redevelopment.cox2m.com
hunterautogroup-hunter.cox2m.com
shifttechnologies-shiftsa.cox2m.com
danielingonyu.com
decotolabs.com
auth.pomodoro.devunlimit.com
dillimono.com
dorm-review.com
bestellen.eeton.nl
www.helzy.elsetic.com
cadastro.enercred.com.br
mta-sts.entelegen.com
eprepapp.com
www.fakel.lol
fcplcrm.com
efos.fintech-coatl.solutions
fisioterapiapinseque.com
www.foresight.sh
navi.freee.co.jp
elantra.gameolive.com
getsetio.com
community.handtalk.me
docs.handtalk.me
use.handtalk.me
c19.links.healo.app
leroy.hr6.co.uk
ilpostino.io
phuongthaogaming.io.vn
www.irontemplarrecovery.com
www.jayendra.in
api.2am.kalinpatel.me
kluge-cc.com
app.dev.lenarge.com.br
littlescrawl.com
marctech.fr
www.mariabalaet.com
www.mattwood.dev
maynardj.com
app.mindist.io
mixithandy.com
dreamshop.mpau.eu
www.neigeventseisme.fr
farmassurance.farmsmart.net.nz
www.onlyeverythingmusical.com
overtureatributetorush.com
rdfmpremium.pampa.com.br
join.reset.app
ruadireitaazores.pt
www.salvetat-infos.com
servicehelix.com
www.sovaga.com.br
www.stottle.uk
supportwhatsapp.com
app-voluntario-modules-develop.taniafruchi.com.br
podcast.telus.digital
www.theonepage.co.za
lab.thequint.com
csa.threespringsfarm.com
admin.ti-do.app
www.umangbhatt.dev
v3rt1cal.com
www.v8.dev
vr-lighthouse.de
wallis2030.ch
workwellsoftware.com
zahnarzt-kreylos.de
Other domains in certificate