Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=smartsecurion.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 18, 2025
Valid Until
February 16, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F0:D0:F0:1A:A9:39:ED:92:B0:B9:6E:50:77:06:00:02:64:B1:08:C7:77:AA:48:0D:3D:AA:B3:22:50:DB:C5:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
the-pttrn.nl
topla.adriom.me
aiqrcodes.app
www.admin.apie.app
www.bebesleep.com
www.biomimicrycompass.com
blagodarenie.rs
auth.blenderbin.com
www.calistree.app
www.call-my-car.com
caplink.app
cardinalknolls.com
www.cardoctorsllc.com
casitasmexicali.com
checkyouraura.com
www.chrisumartinez.com
clarityssu.com
elongo.co.ke
cmsunical.com.ng
cdmedia-publiccyprus-staging.contentcard.com
cdmedia-publiccyprus.contentcard.com
admin-lingerie.creaivelab.com
app.crystalorder.in
www.dinergame.com
dmystapp.com
dropmeoneway.com
e-office-online.com
www.easyed.fr
istruttorie-beta.easyfintech.it
echofish.app
replay.esp.br
ezresumeai.com
faramawysuez.com
www.focus37.ru
www.footballprenup.com
live.gavlhuset.dk
www.gdprocket.com
www.getalvira.com
getelli.app
dynamic-link.glints.com
www.gogoprep.com
green-owl-compliance.com
www.greysharkapps.com
guideforultimategolf.com
www.hastalaboda.baby
www.hoperoadorg.com
alkaline.ilmsg.in.th
inoaventures.com
juancx.is-a.dev
www.jakezeitz.com
www.jardal.app
javierbryan.com
app.jetplan.de
jhtech-inc.com
go.kongclub.app
www.lab900.com
bb-dashboard-dev.intranet.leafsoftware.it
litswipe.space
lorenfryxell.com
lucaschauveau.ca
manacars.es
medicosinternational.com
www.mooncat.pro
mulagabe.com
myplc.app
www.natal-chart.app
www.netreb.be
invite.noja360.com
nyuinme.com
onurtashan.com
www.orthotech.app
www.pakistanpulse.pk
play.parodist.ai
acadscrum.pedronobre.co
myihc.pekoapp.com
postmortem.ai
www.pronounceweb.com
protradesphere.com
fabiana.resende.app
rp-assetmanagement.com
scorebase.co
d3play.smartnext.xyz
smartsecurion.com
www.solaryscnp.com.br
soniqube.app
www.steinmetz-reuter.de
twitter.stillfollowers.app
www.stov.io
yr12dash.terpity.com
www.theduohealth.com
thepopuppicnicgroup.com
toolshake.com
www.trident-fish-bar.com
xfit.turnosweb.app
urbanclassic.de
cloneexpress.v8app.com.br
auth.vueland.app
trainer.wanpass.me
www.xninjajs.org
dev.zhylar.com
Other domains in certificate