Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=rice.staging.pulse.sasaki.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 19, 2025
Valid Until
March 19, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:69:49:93:9E:2C:9F:C9:AC:E3:F1:42:E8:5D:14:E9:FD:90:3C:66:3E:FD:14:B3:36:1F:28:A2:5C:D0:D0:72
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
teachforindiakolkatadelhi.trustin.app
9pick.net
abcomp.no
abmrholdings.com
test.afa-ngo.ch
aibpo.ai
airys.video
androsvilla.com
tid.apparat.no
ashleyvanlaer.be
admin.barreautanger.ma
belasombra.cv
test.betwixt.life
help.bookingflow.app
auth.calverse.in
app.careerbase.co
cheerfor.net
school.codingbar.ai
www.covidcontroller.com
fraldas.deliveryweb.app
devplayground.io
www.didflatsquitoverwatch.com
www.dreamio.me
www.droptaxisalem.co
intranet.eemi.tech
www.elechis.com
invoice.encelerate.com
go.enchora.com
englearn.in
www.favethebrand.com
fayelomibao.com
fungam.es
dl.gauss.club
www.github.tube
graaphics.co
art-is-everywhere.gracielasmet.com
grouperoyalesactions.com
www.happy.best
share.hbsfc.club
share.heny.app
flipflip.horizonfreebies.app
app.influ360.com
mining.instaclaim.ai
itreum.me
jacquelinevillalon.com
www.jagst.design
kurse.jura-freiburg.eu
www.kevincklo.com
l.lendico.ng
letsforecast.com.au
n.limhenry.xyz
task5.ltrel.xyz
www.mand3l.com
materuel.com
merry-christmas.fun
mirakim.com
dreamdic.mobidevthai.com
ondemand.moveitnq.com.au
www.myexodusacademy.com
fueru-service.nakabayashi.work
www.nerdsforchrist.org
nimblewolf.dev
novodose.com
cms.oneshots.com
www.orcarecon.com
www.p-itsudemo.jp
pos.paydoo.com
paylo.tech
kolina.pointspot.co
onboarding.polipay.io
ponn-tana-web.com
dev-ptm.producttube.com
lnk.pucrs.br
www.puntorojoproductora.com.ar
eurofarma.queliga.com
www.random.london
www.raufoss.nl
get.reframed.app
rooferintel.com
ryanatevstudios.com
rice.staging.pulse.sasaki.com
simonhouse.ro
a.snirx.com
www.socialchair.co
solutiontechseries.in
intelligence.staq.com
admin.takein.com
www.techhandoff.com
my.tinman-asia.com
tonalida.com.br
ttly.co
undervisningsplan.no
www.unflock.org
www.usefulformulas.com
agent.tk.videolink.app
admin.violentnoise.com.br
admin-kohls.vividclm.app
w0rm.zip
manager-cms.wework.com.br
yaahot.com
Other domains in certificate