SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=mydiet.one
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
August 26, 2025
Valid Until
November 24, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:95:C2:7E:E0:BA:16:7E:EC:9C:2A:C3:6E:54:08:AB:79:3A:B0:9E:0D:B2:E5:09:F9:BE:ED:CF:75:42:97:99
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
studenthubapp.com
42tango.com
aghithni.app
analyticartisans.nl
apartamentoslabarrosa.com
my5kworkout.arborapps.io
admin.arkabia.com
artelelektronik.com
rtc.audiovalid.com
design-system.avilaroffe.com
url.biancalapuz.com
public.blseclub.com
www.borderinteriors.com
www.c19tracker.net
www.carahiggins.com
renderer.castsports.tv
chathamroom.com
parents.classroomhub.app
dev.applink.communoplus.com
commutemapper.com
crypto-or-not-crypto.com
www.ctrlxcode.com
auth.datahen.com
de-uitdaging.org
uat.digiqc.com
earbud-finder.com
evoke.digital
vos.fecg-speyer.de
api.fello.in
pay.fetchpet.com
ffai.llc
filipwolanski.com
find-internships.com
fiterasystems.com
www.forodeescorts.com
fynking.com
goktepelojistik.com
bandos.impresarioinc.ca
indi-psychology.org
www.inhr.dev
www.interim-cfo-cs.com
jdtpoly.com
donations.plex.jomartineau.ca
www.jordanmars.dev
qa.justjestb.com
kalajcapital.net
auth.lectorlive.com
www.lesamisdejennyalpha.fr
liberalpartyca.org
shimane.linx.live
luukkonen.cloud
manifest999.com
www.melike-mesin.de
miguec.com
docs.modalai.com
analyst.morwils.com
candidate.morwils.com
hr.morwils.com
scientist.morwils.com
uiux.morwils.com
link.mujer-financiera.app
mydiet.one
myst.today
hexdate.nabilamerthabit.com
newbo.in
cdn.nexity.dev
orders-tandoorizone.nextorder.com
osvaldomorales.com
outstandy.com
overviewqc.com
policyinsight.eu
quarcadvisory.com
deeplink.red-folder.com
reddickulo.us
remotegrove.com
api.rinkt.com
applesstrack.rxoconnectdemo.rxo.com
saachivijaywargia.com
sandspringsdental.com
robot.sciencecafe.cz
text.securepointtech.com
shenobutter.com
pro.link-dev.sikkaapp.in
smrtlytics.com
sormlandshem.com
szilvisutivilaga.hu
tacknest.com
theaisummer.com
tjzegmott.uk
totem-architecture.com
toursategypt.com
www.tsumori-project.com
gabe.turborad.com
urdumanzil.com
www.webkomora.com
cdn.weluvtrap.com
woffice.app
miro.yac.com
www.youvido.com
dev.vault.zn2k.com
Other domains in certificate