Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=hiveappcanada.jonahgroup.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FC:33:41:1A:DE:E9:F3:40:93:C0:73:EA:76:D5:67:64:AA:FF:33:E2:70:E6:CF:9E:9D:8D:DA:8F:21:9D:21:B6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
smartphonewaiter.com
kimball-modular-test.3dcloud.io
adminpanel.africar.ng
anteplisham.com
www.antonidb.com
anvicordova.com
apartmany45valca.sk
app.appsonair.com
panchos.asap2go.com
app.astralis.life
www.base8.lk
bienesraiceschavarria.com
menu.sandbox.cardapioweb.com
app-jump-fp.carecloud.io
tour360.chapinfilms.com
www.clickmeo.com
darshanent.co.in
trikochem.co.kr
admin.transcycle.com.ph
www.jobnet.com.vn
davidlengel.net
dedimc.link
app.defit.io
www.dixper.es
www.dworekwiktorowo.pl
monitoring.e-graft.com
www.eddicus.dev
eightsevencentral.com
eroul.ro
ferroblesh.com
www.fireviewipt.com
gloww.co
go24.app
gobotgo.io
graceandtim.com
granularhealthsketch.com
www.dev.en.frame.hallobon.nl
www.hermes-lines.gr
speakeasymobile.impactwrap.com
intrederium.intredia.com
japanjs.org
jidoka.ca
hiveappcanada.jonahgroup.com
ppl.streetlights.katapultwebservices.com
agrada.katytech.com.br
www.kendisinindoktoru.com
learnaboutrewards.com
lerocretail.com
upload.loveyou.jp
www.lwintegrityconstruction.com
fbdown.miinosoft.com
www.mujahidgroup.com
www.nahumgetachew.com
www.neuro-surgeons.com
auth.prod.on.life
www.wai.onfoco.com
dev.links.fhhealth.opnte.ch
pages.payaca.com
pokecon.live
promirsa.com.pe
dev.app.pspro.ai
app.qotw.net
quarkto.com
quickrup.com
doms.rcloud.dev
quote-portal-uat.reach-demo.com
www.rock-shop.ie
www.rompathlete.com
breadcrumbs.rysimapps.com
samaitch.com
www.samaysi.com
scorecards.games
form.selfcarestrategies.eu
www.sheacopperpipeclassaction.com
www.sifforum.com
hara-castle-ruins.signsense.jp
earth.simplicityloadout.com
admin.skyprologistics.mn
snackdrivendevelopment.com
airwell.speakylink.com
www.spf50music.com
demo.strya.co
sudhanshumishra.dev
www.suzannemcgoeymd.com
webapp.tachimachi.jp
telepuntotecnologias.com
app.terncommute.com
demo.tevi.co
www.thiaapp.com
tjworkswood.com
www.treinaodoburi.com.br
apps.ukiv.com
ulis.design
www.unbrokencircle.art
beta-inkstinct2.vernizzis.it
vidasavenda.pt
vikrantintelligencesolutions.com
campaign.vitminute.com
wallfocus.in
www.wisehackr.com
Other domains in certificate