Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=auth.tomboloapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 27, 2026
Valid Until
June 25, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:D8:DF:D8:F7:0A:C9:5F:C6:82:1A:F9:18:6F:3B:00:87:B3:21:7A:33:D8:4D:94:4F:14:0E:9D:EE:EF:98:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
specifiedfs.com
180sued.com
gm-modern.agtdijital.com
www.agtdijital.com
anaid.fr
anshagarwal.net
learn.arketiks.com
badmintonvalladolid.es
bharatcalc.store
bidhand.ai
bookablespaces.app
www.cedricduriau.dev
259cdc.clearquote.io
conuco.app
test.databakkers.nl
dev.dishli.ai
drawstry.com
emanuelcaro.com
emotioninfocus.de
adoption.enable-essential.com
esteticplex.com
euro-direct.ru
www.euro-direct.ru
certifications.faceprepcampus.com
www.fareedmotihouse.com
farmbook.co.jp
goodwillminingcompany.us
database.greenlabsvirtuallabs.com
admin.grooveat.in
admin.h-4a.com
handballapp.io
www.heartickets.com
hprodagency.com
ifl365.com
www.risk.in-compliance.ch
innovationery.com
insomnio.io
edward.irozuru.com
jagst.design
karelspectech.ru
www.keiver.dev
koc-web.co.jp
www.kprchat.org
staging.kukunawa.pl
listenfield.ai
ludox.app
lyricbaker.com
cheongju-hts.makedelta.io
mapbacktoyou.com
games.marutichennai.co.in
guessme.mavolabs.com
sl.max-stg.co.il
schools.mindflowworld.com
muehlbacher-dnd.de
mybiosearch.com
links.carecognitics.mycareplan.health
admin.myhishob.in
app.myvelocity.in
nafrab.co.uk
naturally-salt-poolaccess.de
www.nibbana.cc
nidhiwishall.com
ns-learning.org
auth.oneboard.live
www.pickalllogistics.com
pku.world
plenyfy.com
quizzclub.in
ramonvideo.com
www.reachformiq.com
runnerapp.in
saumya.dev
ostern.schweizstrom.de
sandbox.scoopr.no
shandygunawan.com
pandc.sid426.dev
sitelyt.com
www.smcw.dev
my.gratisira.solerabank.io
srgfinance.live
successnow.in
sws-hub.com
tcb-onderhoud.tankcleaningbenelux.com
teclaint.com
www.therangers.org
www.tindebyte.no
auth.tomboloapp.com
app.traqpad.com
test.reloinsight.trcgm.com
trimtrackfitness.in
www.tuunepauler.com
twasol.app
www.unstagedcomic.com
app.uppscore.com
uppscore.com
static.workchats.com
run.wowface.cc
www.wstllc.us
www.yobytoyota.com
ewallet-demo.zotapay.com
Other domains in certificate