Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=fiuprediction.sqwadhq.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C3:E7:D5:57:74:DE:53:0A:B6:9C:B3:BC:5D:8A:AF:C3:52:CC:CC:EB:A0:D0:51:7B:52:F2:CE:0B:A7:F5:29:4B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
store.k-lab.io
firebase.4ox.kr
www.acinettoyage.fr
alexmcdowell.design
globalindustries.apollocode.dev
www.bazaar.contact
csplimoges.deeplinks.bfansports.com
www.biccixpress.cl
blacklub.net
calculatingbitcoin.com
play.chessmatec.com
watter.co.in
timesheet.ramani.co.ke
mirror.sanwerk.com.ua
www.crea.ninja
www.ericaberardi.com
eroglu.dev
www.fant.io
www.firestudio.es
www.app.flowtils.com
auth.test.foresthoa.io
dev.nototeka.galis.rs
3092-k5.gamefp.dev
meet.staging.go-2-work.com
www.goodbii.com
gpi-code.de
heedsolutions.com.br
hibernatekids.com
app.hokishoptaiwan.com
www.icqual.com
ingenioti.pe
irack.mx
teste.simulador.izii.io
jayswilder.io
www.jooish.app
kevinkusi.dev
kiethub.com
knowledgeboat.in
dev.lexio.io
llpds.com
www.logexmanager.com
rab.lumbungkedai.com
app.martangroup.com.br
qa.policies.mayais.co.za
metahospitality.in
subastas.metropoligijon.com
chatroom.mikebouwmans.nl
www.monarkhq.com
screener.musaffa.com
padel-dev.nisart.eu
www.northcoaststays.co.uk
nubofy.com
admin.nyby.com
oweke.com
personscale.com
picpoint.link
lionking.piticommerce.com
pocaussari.eu
www.poliana-psico.com
prionize.com
www.quentinribierre.com
realechery.com
collection.renoescamilla.com
mdev.riderdash.com
www.robusthaven.com
unlv.dashi.sasaki.com
admin.scaffinspect.se
staging-v2.seenspire.com
ninja-voice-endpoint.signage.ninja
www.singinglessonsexeter.com
www.solucionestorrecilla.com
soundsfromtheweb.com
applink.sparker.io
speedmoose.dev
fiuprediction.sqwadhq.com
srsinformatique.com
dev.admin.storagepug.com
www.sunsweethouse.com
swiftjoint.com
wahlen19.tagesanzeiger.ch
www.tajmotorstore.com
timetoeat.app
dashboard.tinxy.in
tommytwoswords.com
trackerbuddy.io
www.uprate.co.uk
qa.upscore.no
wo.dev.usemason.com
accounts.vezham.com
vigesreposteria.com
go.visual360.io
www.vivo.click
wtta-main.weturntix.com
tetris.wildotto.ca
www.xclusivecarsbasingstokeltd.co.uk
yeniotomobil.net
ykogames.com
zertidocs.com
qa.api.zoomsystems.com
zxc.dev
Other domains in certificate