Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=beta.weloveideas.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
71:B5:18:74:87:9F:55:13:E3:B8:B2:2C:3E:B2:6E:35:D8:87:A2:AB:AA:FA:5E:C0:35:62:AB:3B:3D:73:62:53
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
test.filing.investably.io
play.1ludo.in
dev.feasibility.reflex.28east.co.za
amirmohammed.com
staging.client.amooto.com
portale-ispezioni.anccp.it
www.askaf.in
axisbinc.com
bbnk.me
www.beingndoing.info
link.bergerindia.com
siman.bundt.link
www.businesslogic2.dev
buycorp.co.za
cademicchesscenter.com
www.chasegeo.com
chocopps.com
y.com.my
nehalahmad.com.np
email.lescon.com.tr
www.copymail.ai
daypuzzle.com
login.descendantsdna.com
web.deskbird.app
www.digimal.no
www.dot-shop.net
krishnagiri.dropstaxi.in
pudukkottai.dropstaxi.in
salem.dropstaxi.in
dev.eduqate.org
www.ellingsenbyggservice.no
farmzone.etcghana.net
ferst.sg
www.flightcontacthelp.com
menus.foodlink.one
public-lst247.gocad.de
develop.guestgenie.com
pvpc.happergy.es
intellisale.com.br
intrivpn.io
chat.joextodd.com
activity.juanwallet.net
www.katfang.com
moments.layachidev.com
www.leonardomerlin.com.br
ai-idol.mangveloper.com
lma-admin.megsapp.com
moldovanandrei.com
monle.shop
email.motorsmeet-infos.fr
precitas.mymoons.mx
www.nektar-soma.co.jp
nicochocochips.com
home.nurdiansyah.net
nxt.fyi
www.ohscv.com
gas.onchi.me
www.oslojazz.no
web.app.partou.nl
pashaco.app
portal.peakscore.in
propulso.eu
link.protranslate.net
www.proxiservices.be
psalterapp.com
www.psielianesiqueira.com.br
www.pureskindoc.com
admin.realhappy.net
www.repostapp.com
revivalistmusic.com
rolldnd.org
rtbyte.xyz
russellkirk.ai
app.schoolassistant.io
sidekick-stage-eu.admin-portal.sidekickhealth.com
beta.skybolt.net
skypunchgames.net
accesos.snoopconsulting.com
sd-retirement-plans.solerabank.com
spn-technology.co.nz
stanford.ir
www.stevennoyce.com
www.stimmex.de
dev.t-soft.io
planningpoker.thaeds.com
thecum.org
uat.themeatstory.com
www.timepassgame.com
tngreencompany.com
landing.treevox.com
www.unique-career.jp
get.vanna.app
visionvidhya.com
svarka.vn.ua
otodeger.lisa.web.tr
beta.weloveideas.com
bf-cloud-dev-links.wowtools.jp
xchai.me
yachosokuho.com
www.yashalum.com.mx
Other domains in certificate