Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=webtoolbox.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:20:35:D8:FA:A4:15:99:A1:EA:7F:69:AA:8E:29:F2:68:59:51:B1:49:94:78:5A:A4:B0:13:7C:92:EA:3B:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sastrala.id
deliroutine-app.5loyalty.com
hdd-demo-1.5loyalty.com
wokyko-app.5loyalty.com
heijinv8yishenbaojian.5t2d.com
recruiters-staging.acelr8.com
acquibots3d.com
airsupport.group
drishti.aolic.in
www.apomap.app
chat.appypie.com
bednarz.design
bigtext.app
capplica.com
app-11.dev.carto.com
qa.cloudroutine.com
concepviz.in
cosmodrome.dev
auth.decorum.work
deepastra.ai
www.dekaf.app
verkeersveiligheid-uat.dokdata.nl
icons.dynamicdevs.io
efanselect.com
einkehr.ch
trackingapp-rbs.esports.cz
faberit.pe
redirect.farefirst.com
g-immobilier.com
www.gcnym.com
myevents.georgfischer.com
www.gkaru.com
gloryvillehotel.com
www.glowfishproductstudio.com
homequest.by
hyperacron.com
www.hyperacron.com
member.illinoistruckcops.org
inspiretravel.com.br
app.staging.jahezacademy.com
jeremylilly.com
www-qa.jimsformalwear.com
www.jmhcs.com
john-walker.co.uk
experiment-app.kiwi-go.jp
www.kodeon.agency
dev-share.konaiceboost.com
startup.kspu.edu
newstar.kuruvi.app
www.laksitha.dev
app.layer.team
www.librexcraft.com
site-production.lovb.com
luminum.group
www.luvbugsnugzandjewlz.com
merchspider.com
www.laa.mightybyte.us
download.ml.fitness
www.mtrfreight.com
www.mytruckingcalculator.com
noelramirez.com
careers.nycancer.com
covid-screening.oakwoodfriends.org
play.on-replay.com
auth-lab.ongva.com
ourfaithdoon.org
www.pammagotchi.com
www.parknito.cz
shop.pass-card.app
pawpawdot.life
plasticanalytics.co.uk
vendor-dev15.qlub.cloud
ra-vilmar.de
seanleishman.com
shadowsoftheafterland.com
www.skhanlangsir.com
relogin.skloutown.com
www.app.skorebrd.com
cms-staging.smartplanthome.com
emathstudio.snapmentor.no
steventidd.com
www.strapassonpilates.com.br
www.swiftbee.co.uk
tampere-pirkkalaairport.fi
color-swatches.tbun.dev
thaithaicuisinenc.com
redirect.thesummationproject.com
theunofficial.space
thiagoafonso.com
centro-integral-meraki.timp.io
www.tugranja.com.co
uploadmystock.com
use.upmic.app
vchat-lovelink.com
warenex.com
tools.wargdrones.com
webtoolbox.app
www.whiteoakrenovation.net
www.zirostudio.com
zombie4game.com
Other domains in certificate