Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=squat.turnosweb.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:9F:A8:8F:7A:F8:10:15:24:62:7C:02:6B:A5:C7:68:0D:B0:59:CD:91:5F:77:E9:55:E8:40:17:F3:A1:AA:22
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
s.jonathanlawhh.com
www.a-j-clean.de
ingresso.alemdacura.com
connect-dynamic.amrock.com
altair.autentique.com.br
behave.com
admin.dev.bioracermotion.com
buscarpatente.com
bynem.com
lw.cl-dev.ovh
collectspot.com
courtmatch.co
creatorpass.net
datajutsu.com.mx
www.delern.org
deliriumdesigns.com
www.detoxifai.com
www.divshot.com
dope-dev.drivebuddyai.xyz
next.dynamic-ai.com
www.ecosys.app
elsa-app.de
elucicodesoftware.com
www.esmarketing.net
ethan-barton.com
farmaciadarselys.com
mappa-aziende.farmindustria.it
dashboard-test.fhinck.com
gazolukas.com
geekytwin.com
goquasi.com
hawkeyegpspro.in
www.helloshirt.app
hlinc.com
www.i360.la
idiotproofdietonline.com
pakmeng.air.iot.in.th
18cuisine-admin.infinity-asia.com
wordii.infinityrisers.com
one-education-stage-5.ischoolconnect.com
libraries.jacq.dev
jazirarentals.com
petitsanseb-admin.kards.fr
www.konectsocial.com
mobile.legeantduconteneur.com
letsbowlchennai.in
www.liliandtheyorkies.com
lowell-place-apartments.com
www.lrnco.cc
www.lunchbestellen.nl
lello.magalu.com
martagg.com
www.migiwa-ya.dev
miiteratechnologies.com
passer.mlukawski.com
www.mramos.dev
novajukebox.com
noxlock.dev
i4pt0.parallellearning.in
parkaly.com
dashboard.parkchamp.ca
pcbclick.com
app.playtelecom.com
portalsglobal.com
partners.pupford.com
www.purelifedigital.com
qanisa.com
www.rfh.mx
round1studio.com
rujames.dev
russellstephens.dev
ruteksystems.com
invite.rvn.re
sadaqahjaryah.com
shadoweventsmanagement.in
goodguyvapes.shoppio.co
sohoflex.com
spielblock.app
atlbaseballismscratch.sqwadhq.com
stake-pool.com
deeplink.superopa.com
tecnozinco.net
www.thelivingarchive.org
thisweekonott.com
together4u.com
share.trakku.app
travelwattsapp.com
app.truckbook.us
squat.turnosweb.app
easy.tk.videolink.app
update.voicetyper.com
voxwiz.app
tour.vta.org
housecup.wccprojects.com
webtoolz.online
erp.wedevelop.me
www.wellprofiler.com
www.wittopkoning.nl
order.yayshop.io
oregon.zendo.health
Other domains in certificate