Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=tk.minlabz.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 14, 2025
Valid Until
January 12, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:E5:94:9A:F0:EF:98:B5:8C:33:02:F9:F1:72:28:74:16:8A:3E:49:6D:1D:E0:7B:7B:E8:AB:A6:57:C6:B0:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tickist.app
www.airfieldhub.com
analytimed.tech
appverse.me
bookstore.arivy.me
rslegend2020staging.auspidev.com
auth.ava.me
bigdadz.cc
birthdayreminder.app
manica.bitestechnology.com
www.brickgao.com
care.brucira.com
camben.com.mx
www.car-matcher.de
robinhoodproject.cerealbears.com
menway.civitime.com
app.clericle.com
eduportal.codeoffun.com
blacksheepbarbershop.com.cy
coupons.couponsbasket.com
ecommerce.crossprom.com
www.cyberintellix.com
www.danamarinodesign.com
cyclictasks.darkglance.in
www.deeplearningenglish.com
dev.desqdigital.com
provider.devchez.com
dexnotpaid.online
menu.dislicores.com
tratamientodedatospersonales.dislicores.com
covid19.docvita.com
www.dominikfryc.com
serve.dubaiaction.com
due-menu.com
dev.earthcubs.com
emails.earthcubs.com
eastwestpropertygroup.com
ecogroovi.com
sunstone.eduswitch.com
eftscav.com
internal.emetmortgage.com
www.emetmortgage.com
api.ensaturno.com
www.eropenpal.com
www.esemenu.com
ethosandkind.com
ex-spore.com
expresstrainroute.com
fefogarcia.com
fiyatritmi.com
fnewz.com
focalforensics.com
delivery.foodkub.com
foreignnumbers.com
free-flo.com
freekarts.com
frontfiles.com
fsg4dentists.com
gdgkolachi.com
getliteral.ai
getmanai.com
gkcki.com
gkckitchen.com
grapevinematrix.com
guidamo.com
guuwii.com
ayuda.habiplex.app
highshorts.com
betcircle.hmroyal.online
www.kidapps.in
joble.lapieza.io
www.latkin.org
www.longterm.app
www.mecordi.com
mersinaytaksi.com
micitado.app
tk.minlabz.com
www.ostaff.co
our-wedding.digital
oxharkirat.com
www.planetzero.in
onmoind.staging.platformkids.com
app-dev12-v2.qlub.cloud
questionyourknowledge.co.uk
reseaupublic.com
rook13.com
www.samaxengineering.com
sbam.ai
sales.skipcash.com
smartcures.net
w.suiso-square.com
kdsadmin.tabletpos.co.za
admin.thehoods.app
www.todoresume.com
tohanesandtohold.com
techdocs.toppangravity.com
tourdefrance-eire.com
link.vincents.app
watiko.net
whoma.co.uk
Other domains in certificate