Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.vezham.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
06:69:8C:CF:10:21:F0:97:44:81:50:35:08:F2:3D:CD:1E:00:05:E7:77:63:BB:C3:82:2A:1B:3C:89:D5:3A:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stage.customer.zipeli.com
0nlineautoparts.com.au
musik.aereal.org
www.alicemontana.com
annaibrands.com
www.anthonycosenza.com
holmes.anyware.software
analisis.apalache.mx
projectizmir.artesdeilusion.com
avslegalassociates.com
kaching.boldgames.io
rocket-voucher.botio.io
lib.casperdesign.no
www.caylerandsons.com
www.chinchoo.xyz
christopher-marx.de
www.cosmicstudios.co.in
codeml.ca
www.copyrightagent.dk
www.deluxecaravans.com.au
dev.domspace.net
pondicherry.dropstaxi.in
theni.dropstaxi.in
www.dylandavies.nl
www.e-laden.de
e-pick.hu
dev.cms.easygolf.net
enterchain.online
stockdale.equiem.mobi
www.esi-car.com
terran.eu.org
europakommunal.eu
admin.everylimo.io
www.findross.dev
fitmindlab.com
www.fivesix.app
alpha.foodworks.online
www.fridaymorningalbum.club
gameralm.at
gianlucamancini.me
dev-events.habitatnycwc.org
www.heidi-chocolate.swiss
comunicar.helpo.pt
share.iamhere.mobi
cipher.nhatphan.id.vn
ilyaselaissi.me
flahiit.impactwrap.com
innfactory.cloud
info.isso.ooo
www.jaramilla.org
jlbeta.xyz
kansobun.jp
utecan.lapieza.io
auth.levelfield-stage.net
www.levelupatlife.com
demo.lfky.app
nsm.loadsure.net
gdapp.stage.lysning.net
demonstracao-app.menuti.com.br
www.methods.digital
miraxr.io
www.mittel.com.mx
moebis.apps.new.de
bio.noodle.cx
playground.nuagedx.com
odyssee-ecole.fr
oommoo.xyz
wepapp.arda.or.th
orkacore.com
primaprix.overview.one
paradisebythebay.com
kiyomi.pedidomovil.es
www.perspectdev.com
www.pilararaya.cl
prompt-awesome.com
es.punjab-zameen.pk
sapp.punjab-zameen.pk
www.rainevents.eu
coaching.rethinkhq.com
www.seeker.ronne.dev
research.runtime.dev
rwabyte.com
sgerard.be
breaky.stolfa.xyz
www.sugarplum-cafe.com
abstimmungen.tagesanzeiger.ch
pyramid.games.tetherstudios.com
www.tijdschriftaanbieding.nl
www.distribuidores.tualiadokeo.com
oportunidades.unisem.mx
upeuskadiekitaldiak.eus
staging.vezham.com
www.vivalaorquesta.de
workspace-recommendation-tool.com
yintuhc.com
www.yorick.xyz
zense.online
nazo2020-ee.zerokitsunehal.org
www.zilkerwebdesign.com
zilkerwebdesign.com
Other domains in certificate