Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.runat.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 30, 2025
Valid Until
February 28, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:36:20:48:79:C0:04:3E:E4:85:12:38:D7:B8:7A:7A:ED:80:88:87:F6:B7:9A:C9:BE:B7:D2:38:93:99:EF:F7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
settings.firehawk.co.za
syarah-farid.abdurrahman.id
api.acrypto.io
www.ajyadcosmetics.com
alisonpatchett.com.au
cccaie.almacreation.co.jp
autodetal.ge
beddy.ee
blog.bharadwajs.me
bras-hotelsuites.nl
brashotelsuites.nl
brass-hotelsuites.nl
brasshotelsuites.nl
www.brasshotelsuites.nl
www.brightideascorp.com
onelink.bulldogrocketry.org
www.canadiv.com
admin.castiron.me
www.charonworks.com
planb.clau.io
sudoku.clip.fish
leap.mako.co.il
jcetcheverrydespachante.com.uy
translator.connectauto.io
cybersecjob.uk
www.davidfriedl.com
thexi.teaser-demo.dbox.com
devasyainnovations.com
maze.e-onlineservice.com
ecostruct.se
app.elevapro.cat
elmanualdetuvida.com
emina.love
epycleap.com
www.ffdata.net
findmytextile.com
foksa.name
promo.getbots.com.br
grainneocarroll.net
gsquareclothing.in
mapmind.helderzx.website
helm27.com
hoplink.hopsoins.com
ebodac.ikanamedia.com
www.influns.com
tecsaude.hml.simulador.izii.io
jayohbee.se
resetpassword.kayou.nc
www.knkp.jp
link.lemonade.company
links.lockanytime.com
www.memoshoes.com
www.meteriot.fi
montak.es
nxpenterprises.com
optimuslead.com
menu.orientdoener-erfurt.de
www.ortiz-construction.com
get.ourflat-app.com
pandemic-game.com
pentanetwork.org
www.pickoneatrandom.com
cockpit.pluscity.at
poiseskn.com
polyglots.io
prozippy.com
pujvacation.com
quantifai.co.uk
quinielas.futbol
quranliteracyprogram.com
www.ramenlabs.science
admin.reddlegendfilms.com
auth.runat.dev
app.runxact.com
memmory.saprandesign.com
secjob.uk
secjobs.uk
dgm2120.shandelleleigh.com
vanny.e.shibutani.com.br
showtimemobilellc.com
shyams.site
feedback.signalspy.com
sillydogs.net
tysver.smartby.dev
www.solar-xpressltd.com
nysphaatriviaadmin.sqwadhq.com
tanmay.design
www.terranoas.it
test.thecreativecompany.in
dev.thepacificline.com
thetinkertaylor.com
www.thirdriver.io
integrosalus.timp.io
www.tobarrajorge.com
www.unsteakables.com
planner.vkias.com
stg04.wowdesk.jp
productie.zagenzagen.nl
zelgit.com
zensi.mu
Other domains in certificate