Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.conectagd.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 23, 2025
Valid Until
January 21, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:19:13:71:6F:41:63:67:C5:D5:95:F6:12:C2:08:BD:09:77:F4:DC:4B:14:98:42:23:1D:50:49:B7:A7:C4:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sexifirmumiulium.com
www.acoatacado.com.br
agenly.com.br
webcontrol.agrico.co.za
murguia.akibaa.com
www.algofied.com
www.arielyao.com
qa.assinauai.com.br
bildata.org
www.bobcatcamps.com
order.cateringrosieroberson.com
pudukkottai.yazhdroptaxi.co.in
colombia-check-mig.com
app.conectagd.com
crewchiefga.com
staging.deliveries.ph
www.deliverydos.com
gnomma.desimone.dev
www.desval.es
active-viewer-dev.digit.srl
dl.dingovpn.com
i.do.solar
encrova.com
canary.everythingissauce.com
www.farmaconsul.com
www.fundacionvalcar.com
garaje46cr.com
www.genesisglobal.school
hollyhoneychurch.com
icost2025.in
ambulans-blekinge.infosynk.se
ambulans-sormland.infosynk.se
admin.ingpreconmix.com
itdigitalservices.site
jacobereynolds.com
direction-fields.jcvogler.com
affi.joyouslab.com
julian.yoga
go.justdial.com
www.kahevakademi.com
wiki.keremergur.com
level.leetserve.com
lifeforcedynamics.com
limitlessloop.com
app.linkface.com.br
emp.blr1.locobear.com
loftov.site
www.loremipsumdelor.com
www.manodio.com
mapagoal.com
www.marcosluiz.com
matchbizz.com
app.sibuana.mbkspace.com
app.sipakar.mbkspace.com
app.sipeta.mbkspace.com
links.melodymine.com
www.memopin.io
mister-fish.it
miyakisynth.com
escape.moumou.land
mudable.cl
naturevaluetool.com
www.netgainz.in
app.nextcard.me
demos.nextintegral.com
nominandum.de
notion-ctm.com
www.ontp.dev
employee-chemeca.ooho.co
paincurebd.com
www.pinedavictor.com
www.pipemanprowash.com
www.pitics.in
pleasantviewfarmllc.com
graphy.pmdatasci.com
prestiva.app
www.promley.pl
qaamobile.com
radiologycored.com
manage.rcloudsoftwares.com
skip.realliferobotics.com
www.retidos.com.br
revafabrics.com
user.robocrowd.ai
hrconsole.salary-hero.com
sami-stroi.ru
www.siapco.com.mx
chat.simpliroute.com
www.spiolabs.ie
tick.dance
topscholar.in
touqeerulhussnain.com
beta.upscore.no
usdtea.io
why-i-cannot-see-my-game.vebora.com
lego.storefront.vida.studio
vinayakasolutions.com
legacy.app.yamm-staging.com
yougento.com
dashboard.yuzu.hr
Other domains in certificate