Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=walletflow.jdsoriano.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 06, 2026
Valid Until
April 06, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F3:9A:D2:A5:FD:AE:DF:A8:00:4C:C7:57:9D:23:2F:90:58:26:55:61:EB:3A:AA:83:DC:00:DD:00:CD:88:5B:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
test-space.avegoo.com
cv.abhilash-pm.com
www.abhilash-pm.com
aconchegodarosadosventos.com.br
auth.adblocked.app
dev.aepdf.in
anthropocity.com
www.anymoney.io
journal.astralelite.org
www.bitfried.com
admin-stg.book4dance.com
cafebanglaashington.co.uk
shopping-portal.cencosudx.io
admin.checkvin.org
zaraspot.chillcom.store
chirayuvu.com
citvindustrial.com
noticeboard-app.dev.counselvise.com
app.despesassimples.com.br
discr.io
elink.ept888.com
qorder.ept888.com
classroom.exaedge.io
fastadminpro.com
fchess.vn
felipecuevasleiva.cl
habit.finnjones.me
client.foxpay.me
spy.geniustools.io
globalnaturedesign.com
www.globalnaturedesign.com
sheep.gornergrat.ch
coach.gosunow.com
setup.homewizard.com
solution.hyperway.app
idnp.md
www.impactpartenairepublic.net
www.ispentit.com
walletflow.jdsoriano.com
app-test-sftc-dev.joltee.fr
wizzas.joltee.fr
bloomify.jukelyn.com
go.kaiyu.io
kchat.fun
xn--80aabigv9c.kiev.ua
www.kunlatek.com
www.lhospitalito.com
www.lifemagicstudio.com
likeawiner.icu
magizhinilifecare.com
tech.makeit.buzz
www.malaksadekapps.com
work.markengroup.cloud
e11.mbase.dev
staging-lh.mcomtech.ch
jokitugas.my.id
www.mytrove.co.nz
ascent.nxtstride.com
crm-test.papayamobile.com
pdwtchemicals.com
www.plasticstra.ws
old.backoffice.prexsell.com
propertiespark.com
servercii.qzz.io
www.schooldestination.com
socios.avalganadero.sgroneclick.com
socios.patagonia.sgroneclick.com
www.learnhtml.soturimedia.in
stepsdads.org
sunshinesolar.info
control.telep.com.br
api.vision.teleporthq.io
totemmatch.com
trackmybus.live
admin.tripture.in
truniv.life
www.umango.in
link.upaged.com
staging-capture.usertrb.net
va-vna.vnlp.ai
voiceinsilence.id
wadahome.com
wikipad.org
wisecloq.com
xn--42cfakg8enak8d2ar1f0a7djj3dzc8sd.com
xn--72c1a2bst7f9ctbh.com
xn--a-4ga.dk
xn--bci.gg
xn--espaosawu-t3a.com.br
business.xn--gvenilir-65a.com
www.xn--gvenilir-65a.com
xn--hf-lcb.com
xn--pisoslogroo-beb.es
xn--prsolengenharia-wrb.com
xn--schlsseldienst-zrich-24-fpcm.ch
app.xn--stlstrimmen-hgb.no
www.yoruhub.uk
yoruhub.uk
www.yunufit.com
zasgloballlc.com
Other domains in certificate