Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.closedive.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 16, 2026
Valid Until
April 16, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:5A:B4:81:4E:4B:44:48:B1:DE:01:B7:05:DE:95:B1:79:16:E8:DC:2A:E8:E6:52:86:1B:22:FD:4E:69:FA:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
test.battlecollage.com
www.10xth.com
accordle.fi
www.achportfolio.com
agustinpinto.dev
www.alsafaqa.com
www.ar-md.eu
areyouadipshit.com
www.atlanta40.com
www.aubercot.com
berri.io
billbookpro.com
blupeyi.com
bnbflow.ai
www.brandonsinclair.ca
auth.bids.brcframers.com
www.christymoormann.com
preview.circup.ch
www.cleaningsorted.com.au
auth.closedive.com
meeting-summarizer.akvelon.com.ua
insta.copyhacks.com.br
www.dansroofing208.com
dhleevietnam.com
digitale-arbeitsberichte.at
admin.dreampay.com.br
www.educecoaching.com
elphe.net
www.evergreenlandscapesco.com
famy.sn
felipematallanap.com
app.fictivereality.com
flagshippage.com
flutterbootcamp.dev
freudnfriends.com
agents.gentura.ai
www.gethugeapp.com
www.goldenfishesports.com
gonzalorivarola.com
www.gswcamps.com
haideraltahan.com
portal-uat.hastingsdeering.com.au
ci.impreszions.biz
www.inkpenlabs.com
www.kbec-nexus-season2.com
kidcreditsapp.com
www.kisanportal.com
www.lagoffice.info
proflow.lancehawks.com
reviews.langhoangal.dev
lp.makepoke.com
apecco.marcafranca.com
maydust.com
www.medqr.com
app.dev.mobaretu.com
trk.moj.io
motostats.info
admin.mytimerecovery.com
links.n1nja.dev
app.nagriktv.com
www.newportinternationalchurch.org
ninetailstechnologies.com
www.ninetailstechnologies.com
employee-dev.ooho.co
sushenjayasuriya.org.lk
link.peppermint-api.com
academy.phishar.com
www.playfuljava.com
promptnotes.app
staci.rabot.us
rafaelasantanaesteticista.com.br
masjidibnusina.rajaahmadtabib.id
www.restauresse.com
www.rtti.dev
fos.rupifi.com
www.saberindustries.com
scantaps.com
bookmyhall.shuence.com
skmm.online
dariosuarez.smartin-hclinicos.com
private.smartmortgages.com.au
www.snakelog.app
arrival.stomprocket.io
adminstage.tagujam.com
www.taxwaqeel.com
www.three38inc.com
appredsenior.tokapp.com
pay.touragate.com
tsaperu.com
two-cents.app
unicorntemple.com
www.verseguide.com
www.vitartha.com
site.staging.vivamos.net
app-staging.voxent.ai
wearelove360.com
m.wickedcampers.com.au
go.wiseree.app
ylwtacos.com
zekihr.com
Other domains in certificate