Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.vilago.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 20, 2025
Valid Until
January 18, 2026
63 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:EC:16:EF:92:D3:07:0C:93:A0:B2:21:26:B9:77:52:C8:31:7F:5C:52:1E:5E:E4:2E:BC:91:BB:E7:EB:30:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
teresabarrueco.com
2020.effective.band
amry.dev
analyzee.io
andygrace.dev
www.ariadelgarda.it
assist-ia.com
publishers.axon.es
benjibooks.ch
blackflux.in
goerli.blooom.app
app.bnbflow.ai
boccuti.dev
www.bowls2go.com
www.casas-app.com
app.cashkaka.com
www.clickship.app
climateactiontruro.org
collaborx.org
auth.compensate.com
ros1.configuradordeco.com
www.coppincamps.com
dev.smartsite.dataauchan.fr
oruyo.doikougei.com
dourous.net
api.dynamicloyalty.ai
dma.easy-soft.group
eficiente.co
elsalon.app
fashionly.store
flashotonic.com
freshlinen.in
fujimaki-semi.com
www.gamemic.com
goodonesolutions.in
www.horavip.com.br
www.innocol.com.co
acceptance-de-ag.input4you.be
lp.itatorders.in
nutres.itera.es
shopify-rewards-app.k5technologies.com
kanguru.mx
kiacowansville.com
www.kopsitsolutions.com
admin-stg.landit.co.jp
leboss.ch
www.lexer.dev
link.livingprint.com
lonelydogrecords.com
dashboard-chinmoy.magnusmonitors.com
team.mtv-gifhorn-ski.de
multipong.app
processor.myya.com
nelarobert.com
nemuichat.com
www.nerri.ca
fundrock.nextgatetech.com
www.optpax.com.br
www.ownliga.com
stato.pensioenstartpunt.nl
idnotes.peterjanak.dev
portal.pixietag.me
backoffice.plconnect.com.br
www.plenty.dev
porn-finder.com
www.prattmic.com
portal.rain.agency
rajpura.shop
manual.retailrocket.net
europe.api.ridedott.com
roastme.fun
app.saraga.id
scclearningcommon.com
monitor.schild.com.br
geo.sec.live
urgentcare.sevaro.com
sharedchart.care
sigterm9.com
www.skrub.dev
www.spacetrip.agency
www.staykeen.com
www.taitarestaurante.com
talentbrick.com
doctest.techilatechnologies.com
www.technossion.com
teoanastasiadis.com
v.thevandeheys.com
tianyichen.one
tjudd.dev
cloud.tracplus.com
agent.ufalove.com
uidesignlog.com
lender.valos.ai
www.vendee-lavage.com
app.vilago.com
www.weathercharts.app
staging.plateform.weezer.fr
edutor.wijsr.com
bel.youtabox.com
zipcomparetool.com
Other domains in certificate