Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=link.unipad.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 18, 2025
Valid Until
March 18, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:FF:EA:BA:F0:51:1F:6B:1A:FF:EB:4B:C3:2E:96:E9:DC:AC:1F:C1:22:24:99:2F:A8:86:EF:0A:77:CE:0C:D7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sallys-tiertraining.de
planner.admockups.com
tulcea.artastradala.ro
www.asidoar.pt
axisroot-holdings.info
botmeldtech.com
www.brng.app
byyiro.dev
manage.captego.com
www.lumiere-parfum.co.kr
www.ajls.com.np
erp.ong.com.tr
www.ecomcio.com.tr
transportesandes.com.uy
dcipher.in
www.devhaven.io
udg.diezep.com
gamesmod.drapalamathieu.pro
www.eden-garden.in
auth.evorps.com
www.evrentan.com
admin.exa-lookin.com
ext.flickin.app
getpowerhour.com
app.getpremises.com
gettaskly.app
dev-admin.ghuddy.com
gnpsss.in
virtualoffice.gofloaters.com
golfi.me
www.goodgoings.com
gsiexpressinc.net
equipment.harecord.com
hdprimetvs.com
testlab13579.healcard.com
d.heiminspektor.com
www.hotelroyalgardendaman.in
verizon.ideacloud.com
ileni.com
www.infinut.com
shortcut.infoey.com
qr.intrinsicdata.com
myoffice-isayur.ipiring.com
j4n1k.com
app-dev.justonechesed.org
www.kine-microkine-allain.fr
klara-scheduling.klara-team5-staging.com
cv.klarcommunity.com
kshitijmohan.com
efip.lapieza.io
www.lesliebeesleylscsw.com
www.melirestoration.com
dev.mrright.net
mrskeeto.com
hn.mumk.dev
naturaaguaviva.com
dashboard.nefacabs.com
asset-manager.360pass-uat.nextome.dev
business-dev.ngdel.com
prompt-saver.niche-apps.work
nippe.no
account-dev.nofilterstream.com
oppsett.no
vacant.owenlee.net
paua-beauty-lounge.com
payminator.com
peacefumediation.co.uk
www.peterperezjr.com
dev.dynamic.pindaz.com
app.portfolio-overview.com
profumeriagenovese.it
project9brewing.com
www.rasmuslian.com
accounts.rcloud.dev
www.re-upholstery.com.au
salamfoon.fi
admin.savedby.io
www.shackers.xyz
solutionservicesgroup.com
memomd.soulfree.jp
rsltrivia.sqwadhq.com
analytics-web-qa.tabii.tech
tapotap.com
test-agently.terass.dev
www.thepioneerplace.org
booking.thetravelwhisperer.com
www.tie-app.com
www.tnphs.net
toollife168.com
turkiyejava.community
www.twinsimo.com
www.twogetherflower.hu
link.unipad.io
vinceruiz.com
www.webadventureworld.com
nlh.whyq.com.au
m.wickedcampers.co.nz
utility.wilad.vn
zachariahwatson.com
slsa.zktx.io
Other domains in certificate