SSL Certificate Analysis for swoop.chat - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=iihf.swapp.work

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

December 04, 2025

Valid Until

March 04, 2026 50 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

48:FD:00:3B:6C:86:A4:6E:41:97:7C:F7:79:A2:A6:A1:3B:E4:4D:FB:07:96:B3:52:47:F2:09:CD:E3:7A:59:0B

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

swoop.chat

Other domains in certificate

ajaddons.com

skatepark.aknakn.eu

alexbleotu.com

anydayllc.com

platform.bdo-advies.nl

liverpool.bist.mx

www.bluecredits.org

proxydevapp.blueheart.io

app.careasehealth.com

cd-bm.biz

codeafrique.org

videoraffle.codygo.com

trial.couraggo.com

covidai.net

www.cpscars.co.uk

davidcobbina.com

application.decision21.com

www.deepadmd.com

diagop.com

dogsalon-poupee.com

www.eduardautoservizi.com

app.enfamil.com

epargne-salariale.eu

www.erikschu.com

staging.uws.evenly.io

property.favstay.com

flirtz.com.au

www.guitarlessonscanterbury.com

happy-camper.ca

hengstenberg.biz

www.hngl.io

htetaung.pro

humblemove.humbletill.com

trandinhdat.id.vn

advisor-kpl-stage-7.ischoolconnect.com

jagattaran.com

www.jakob7.com

www.jamesborder.com

www.johannarogers.com

juliaandpatrick.us

justeclass.com

portal.k-9apps.com

kaschwabble.com

www.kellyncunha.com.br

www.kohakudojo.co.uk

korchie.com

kuranka.com

larocarestaurante.com

liquitypool.com

www.logicgate.capital

luacesgolf.com

apps.lucyhq.com

luis-valtierra.com

postfix.maik.tech

mariagloria.com.br

map.menakimethabait.com

www.mondieki.com

a.mywnetwork.com

newsengine.ai

www.nubocred.com

app.oplit.fr

portal.morada.org.br

bond.ownsfare.com

pakloaders.com

helfin.partnerhub.co.za

stage-app.picks.com.br

politrend.ca

powerherbal.net

app.profaktura.cz

leithsapp.qeiicentre.london

raido.cl

remymorrow.com

parcerias.selffi.com.br

admin.short-video.jp

siafoo.net

www.sifted.recipes

sizzle.recipes

galerija.stavideti.com

gabriel.stockers.app

safety.sumamachi.jp

iihf.swapp.work

link.swindrinks.com

my-02.staging.ternary.app

thepaal.com

link.connect.torre.co

tuskytime.org

www.ukraine-matters.com

www.urapurje.fi

variskindo.com

vpsmaster.in

www.wearenomad.co.za

webcasa.app

unit.wec360.com

ch3.writerduet.com

random.xilerth.com

configurator.integ.endor.cloud.y1.de

pay.dev.your.vet