Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=vm-tech.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 21, 2026
Valid Until
April 21, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:AC:79:38:07:52:12:67:F9:6B:2D:59:C0:7D:9B:14:5A:B6:BB:21:10:F9:99:BA:9E:F2:57:E4:5F:F3:D5:1A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
support-mac.fr
agenticminds.com
merchantsbank.aghedgedesk.com
ypasa.akibaa.com
www.amenconference.com
survey.appzi.com
accounts.autocityrealty.com
ngskampongchamadmin.auxswot.com
walletplace.demo.bcode.cloud
haku.beautycounter.com
www.bencarrental.com
www.benharrison.dev
blog.bintern.com
test.app.biome-hub.com
editor.bitwiser.in
www.brookemorosca.com
dev.cdn.c8mobile.com
canary.callistoflight.com
www.calvinkoch.ch
app.carbmanager.com
www.ccc.directory
wildbluemvp.chrisrichter.dev
chulocoinonsol.com
admin.claimscalc.com
clairebeauregard.com
closedcaptionunity.com
www.mllogistics.com.vn
www.cronz.co
www.ctdl.sg
darkimmune.com
horizon-dev.darkstarsystems.com
deepshotai.com
decide.delphicapital.co.uk
www.devinireland.com
www.dilraj.dev
www.dlnr.dev
app.dthlivetv.com
old2.dytechinc.com
e-hcfa.com
lp2.easyinsole.com
www.eurobeantraveller.com
www.f-navi.org
famimas.com.co
festivaldocafe.com
www.goagile.co.nz
api.hellokms.com
angular.hexalogy.com
topgunrewards.incentable.com
iograft.com
www.irisqu.com
fms.ismartnav.com
www.itanbir.com
www.itsshubhaofficial.com
jackeddeveloper.com
www.joannasimpsonmedia.com
juliane-und-denis.de
uat.app.kit.fit
kolozsvarikiss.hu
www.lnfnunes.com.br
files.londonbuspal.co.uk
www.lookreel.com
deckdesigner-qa.lowes.com
marchmadnessmc.com
mavran.com
www.miamifashionweeksummit.com
mingbye.com
app.mocklets.com
monitor.modcreteblox.com
mypkweb.com
newyorkstreetbystreet.com
auth.printing.omr.tw
app.onfact.ro
www.onlineheartrate.com
otomailer.com
su.payup.com
www.pupbiz.pupford.com
vaguinha.quitaboletos.com.br
quoteninja.co
www.radiovn.mobi
love.ramandeep.dev
unusualtale.riverandrailtheatre.com
rosadeldrac.com
app.scontomio.com
shihtzu-hodowla.pl
kb.sipofcode.com
fba.soapandprecede.com
refer.soniahealth.com
speechshot.com
spiceplanters.com
thecambridgeagency.com
www.troyskoiz.com
beta.ultrafora.com
useherjson.com
vermaercke.be
www.viamstrategic.com
vm-tech.dev
wishlists-app.de
wizardrylabs.io
yodev.yoslash.com
www.zwem.band
Other domains in certificate