Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.paletton.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:00:48:85:F7:A6:D6:C2:F3:A0:66:B9:EB:5C:BF:BC:65:E9:4D:F3:2F:43:F4:CC:85:C3:35:69:E0:19:08:FD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
talkyplus.com
www.aaced.com.au
www.abcxyznft.com
accleaninginc.com
alexandjanine.com
dev.andymaclaren.com
arthasangraha.com
babyview.aslsofthouse.com.br
download.assistine.com
www.bloggingfordevs.com
www.bluebird-teaching.com
dblz.broccolirecords.com
clarkstevenson.co.uk
www.codefolio.online
convergentuae.com
dogwoodtech.com
local-my-q1.dpduk.dev
draanateniente.com
dividends.earningsahead.com
admin.electrifyze.com
espressoandpoetry.com
www.fleetview.se
www.friml.eu
fuchu34.org
garrettspence.dev
yasmina.test.graphite.space
guestodo.com
m.hibikirun.com
auth.hyresnap.com
lastwords.i-handslab.com
20224932week3.dinhtiencanh20224932.id.vn
points.imaginexlabs.com
insynctherapies.in
js-api-doc.ipresso.com
www.jorntech.com
joseantoniorocha.com
preprod.kipinto.ch
staging.knowl.io
www.lanha.space
go.largely.com
lloydevans.co.uk
mackintoshsecurity.com
madurai.makemytriptaxi.com
auth.portal.marketingbear.com
coc.mausts.com
www.mayakapps.com
www.mediocremelodies.com
members.76.life
app.meumenufavorito.com
www.miotx.com
stratford.mobilemarketresearch.com
mrbinr.com
auth.mxmnews.com
share.nenerentcar.com
digitalform.artworld.net.my
nexti9.com
www.nortexpack.com
novaterra.io
nsbytedigital.com
vms.p2digital.com
dev.paletton.com
client.park-nav.com
ope.dev.pickfive.jp
app.pifepaf.com
promosiv.com
www.provbeats.com
www.qazah.co
ramadhvni.com
jp.realbyteapps.com
rekoapps.com
restauranteinteligente.pe
retail-ai.jp
concurso-entel.rinnolab.cl
www.ruggerbot.com
www.scaleanddesign.com
seo36.cl
admin.sezeret.com
www.spiceau.com
stella-zrin.party
menuless.sudden.dev
sunnivasol.com
www.swiftrobotics.ai
themarathon2024.com
www.thenerdlabs.net
therecruitingbox.com
thomatos.co
www.tietracker.com
todosteps.com
turbo-topup.com
bitonik.turnosweb.app
gui.vitibot.xyz
lms.voxmedia.com
www.wemeed.co
wen-and-y.com
site.winecode.app
worklike.pro
www.xebridge.com
tools.yaklin.ca
cinemacity.yesmkt.com
zachfleck.com
Other domains in certificate