DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=auth.braineeapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026 55 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
88:95:B3:EC:4E:B1:0D:C5:7B:B9:73:77:C6:DB:3D:B1:93:03:AA:80:A9:1D:BD:47:89:56:A9:02:97:48:0C:DB
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
scan-staging.xdock.com.au

Other domains in certificate

mia.app2.1on1navi.com
silly.aky.sh
www.alyahya.ws
beta.aptitudeclinical.com
himalayan.artisticyoga.com
baddi.link
bidmii.com www.bidmii.com
auth.braineeapp.com
www.brentreilly.com
sst.bridgeui.co
bts-tickets.de
report.myivation.bycopilot.com
cadalerthooks.com
blog.caiogeraldes.dev
viewer.carto.com
play.catfarmcrypto.com
www.carnest.co.th
droid.cohub.one
www.cryptocurrencypatterns.com
cy-mof.com
datiengo.com
distance-tracker.com
distancetrackerapp.com
termsheet.dorado.com.au
webauth.drawingdeskapp.com
e3.io
ebenplastics.net
washmanager.enlacesds.com
exgcrew.com
app.flexitabs.com
www.focuscv.ai
forja-tech.com
www.freecellsolitaire-online.com
www.glowvideo.io
www.grzb.com
www.heavybagapp.com
hesebu.com
hibno.com
dulichsocson2023.id.vn
pinboard.iggkenya.com
iksprodesign.com
independentstoveinstallations.co.uk
www.inspirally.com
iprofe.com.br
www.jazzguitarcafe.com
kenzalsahraorganic.com
dev.kleda.co
create.kreatebots.com
retail.dizzibrands.leap360.com
www.likelikeplay.com
mijn.linisol.eu
rl.minhacentralonline.com.br
www.mithrilhq.com
exposure.mwinkler.tech
www.nextrance.com
www.nrglease.com
observerj.com
gui.odriverobotics.com
openmk.net
blogs.sin.org.in
providenze.net
app.quriate.com
www.ravachedecoracoes.com.br
activate.recovermycar.com
falp.rflex.io
www.rivianarms.com
rokin.ai
www.sagradafamilia-sancarlos.com
uc.scscommunications.com
www.secamalote.com.ar
secondbrand.ru
seeu.me
siberkozainternational.com
sjrurdnxia.com
sketsj.no
backoffice.smbe-production.skipr.ninja
www.beta.socage360.com
my-things.softstuff.se
syracuse.sowl.to
www.hortikultura.spidoplo.eu
sportsbattleapp.com
sds.tac-strm-sds.com
talviwear.com
teamo.coach
techsolid.eu
tejimandireferralcode.com
app.thegreekphilosopher.com
torrezvdeltaco.com
openday.universanidad.es
deeplink.vimeet.vn
www.vinomar.it
stickies.vrtx.dev
admin.wherehouse.io
www.wikhop.com
cms.yafika.net
youhavethepower.com
laudomat.zgimage.net
www.zippinder.com