Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.admin.vidocto.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
16:6F:2D:59:D7:57:11:D3:E9:6C:EE:06:11:89:52:24:FB:B0:4C:23:5B:F8:74:FC:3E:D8:5E:50:63:3C:4F:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
switchai.nl
200views.com
app.abbeiztechnik.de
aceyuu.com
adarshsinghal.com
cdn.aksiliasuite.com
skill.aurorasense.org
postofficescoin.ca-central-1.aws.aurosoftware.net
www.be-on-top.io
www.bikehouse.com.br
api.blurb.fail
borderhopper.net
data-explorer.riddc.brown.edu
invite.careease.kr
nhl-map.celtian.eu
tomateloco.clau.io
invite.clout.one
www.matzlema.co.il
www.mdtrade.com.pl
stg.crowd.fun
devtricks.eu
app.disign.tv
www.dreamdtourism.com
www.e-adic.com
www.entityc.org
www.environment.industries
www.epicbox.tech
newwave.equiem.mobi
ert.credit
www.euteajudotumeajuda.com.br
www.fariselrayes.com
www.freshminds.cz
staging.glassbox.one
godnews.kr
grade-boost.com
selma.test.graphite.space
auth.gymix.co
theme-builder.holtsmark.org
www.houseofmath.no
www.huile-africa.com
trandinhdat.id.vn
app.inmind.pro
stage.insagaarchstudio.in
www.jeroenmeij.nl
salesmedia.johnfowler.co.uk
admin.jourfixed.com
glid.freeschool.lesda.org
imanagepro.lifecheq.co.za
team.limbitless-solutions.org
mediderm.co.za
miyoshikensho.com
dev.myfrontdoor.app
myhousebuddy.nl
navclubesl.com
menu.palatsi.com.br
www.papangpro.re
app.planacan.io
porntopia.org
www.portmarnockscouts.com
www.projectzomer.nl
www.psdatatechnology.com
schedule.qod3r.ru
www.rayosjo.com
auth.rs2.remotesocial.io
app.rolo.family
www.roommatemattress.com
mario-plan.ruga.pl
www.ruri.design
sahaneler.com
admin.salesgear.jp
www.sandgroup.solutions
beta.sekreterare.nu
senseipepe.top
v-space-auth.smawork.jp
coimbatore.southindiacabs.in
hassan.southindiacabs.in
www.spheverse.org
payment-staging.spont.cash
dev-app.sportscards.io
stonemapping.fr
sustainable-matters.org
loja-dev.tag2u.com.br
www.talonwings.co.za
tektork.com
www.themedbooths.com
www.therelief.in
tidalpaints.co.uk
ioniclearner.tinklee.work
beta.tokyomixcurry.com
dev.topfield.app
app.upfrontpay.com.au
cdn.vdevs.in
www.admin.vidocto.com
vitaly.asia
vrcenter-010.vrplus.info
westerweide.nl
www.winringames.com
www.yepli.com
www.zandkasteelfeesten.be
zaso.io
Other domains in certificate