Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cassy.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
67:A5:94:44:E8:81:03:D7:3C:7C:74:B6:52:35:F7:06:06:33:63:97:F8:88:73:0E:37:0F:68:0F:13:16:9D:8E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sagasofyore.com
laz-spins.3dcloud.io
elearning.airtraining-academy.com
go.alexbr.dev
oficinadetecidos.anascalea.com.br
annabugaj.pl
scrumlr.appsfactory.de
www.art-schneider.com
bantumart.com
www.bartreauconstructionllc.com
bewsmews.co.uk
elhamdaoui.bixat.dev
cafetuxpal.com
cassy.ai
conectacatingueira.com.br
connerludlow.com
admin.creatorjams.com
www.cybertechlife.com
dansroofing208.com
view.diamondservicesusa.com
mobile-dev.dionysus.dev
www.dotcheeks.com
crm.dreamcatcher.asia
envynails-vabeach.com
www.esnetworks.com
order-staging.ezmeals.tw
staging.farmly.id
fietsersbond.felixxgroep.nl
foxpaint.se
www.ghostkollective.com
app3-link.gipl.io
game-info.goldenkings.jp
files.hanumanth.live
app.uat.healthread.com
precheck-backoffice.dev.heycharge.com
cultivaremcasa.hgcultivo.com
api.hotdesk.ai
www.humanzstudioz.com
www.ipdandp.com
www.ironhorsepharmaceuticals.com
www.isdassessmenttool.com
jibbob.net
juanignacio.tech
app.kards.fr
app.keyplan3d.com
app.klareos.com
languedocetancheite.com
www.leotoons.com
staging.littleskoolhouse.com
www.losxv.de
cdn.nimda-2.love4succulents.com
markmiller.io
meyelconsulting.com
account-qa.migolink.com
opensource-qa.migolink.com
encuesta.minibareshoteles.com
www.mondocoolstudios.com
www.naturaltribe.com.co
ndreu.xyz
admin.netmenu.com.br
www.nettex.co.nz
spot.niologic.com
app.noostechnologie.com
integration-testing.beta.numerous.cloud
kshow2022.oligomaster.com
www.orajas.com
www.outdoormusichk.com
pixelartify.com
cms.pronaikon.hr
app.pupilcheck.com
www.rentawayapp.com
blog.rmtheis.com
ryanbarrett.dev
cargo-ranger.screen-logi.com
securityplanner.com
shamudeen.ca
dev.shoprocketapp.com
www.sistemafigs.com
forum.solidsail.com
solve63.com
www.spdenis.com
qa-sv-analytics.sportsvisio-app.com
sv-analytics.sportsvisio-app.com
tallyflex.com
sihnebt.tbm-binni.app
www.third-ray.com
www.trade245.africa
www.online.trapmaster.co.nz
unitymemo.com
rd.useclicks.com
provider.usenash.com
makro-chatbot.varpevent.com
www.vine-develop.com
visaeeuuarg.com
share.vuspot.com
api.wizzi.io
www.xiaolongbao-tsutsumishin-ichi.com
yellowblock.services
app.yourdaily.health
www.zemely.com
Other domains in certificate