Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.sparrowteams.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:EC:DC:E9:0E:8D:C3:C1:1F:B7:61:14:05:98:E7:71:D2:0C:CD:8F:D8:9F:39:EE:C7:08:25:0B:41:7F:43:DC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tobiasvandeven.nl
3dspartan.com
portal.aidispatch.cloud
albertadevor.com
anadoludent.com
anonymousvideocall.com
badmanexperience.com
bendoylegray.com
www.bfywlkj.com
bibli.social
blackholerabbit.com
bluefinautomation.co.uk
client.blueknife.tech
backend-ux.bolste.net
resident-stg.buysell-technologies.com
chartcow.com
christianfillies.com
xcall.xhub.com.vn
firebase.crowdprobe.com
custompants.com
scriba.cytoreason.com
deepsix.app
admin.delphinahomehealth.com
craig.digitalpool.com
dreamcoder.tech
app.dropletequipments.in
vinhchau.ebot.esoft.edu.vn
www.emmaherms.com
dashboard.eshar-app.com
www.fairyhomes.ae
www.firewerkz.dev
devoirit.flairtechno.com
fork.co.jp
freshprojects.com
www.fuentesblan.co
apis.fvbank.us
ggx01006-014.gadabout.games
fb.gd.fm
gettwine.app
gia.app
www.hcmanifesto.com
www.healthy-india.net
hikoralab.com
iancwe.com
islamicdua.net
tod.itbeschwiz.com
www.jamworks.xyz
login.jasig.org
findmyfare-sdk-sandbox.joinsherpa.io
codenames.jomac.ch
labcontrol.co
www.labforapps.com
www.lennarthase.dev
linkpota.to
manitha.in
www.mcmullin.app
miku.games
staging-mortgaging.miracl.at
mockingbird.studio
otter-staging.nextinline.io
test.nidaulquran.com
novagroupnt.com.au
ocuplan.co.uk
dashboard.omega-house.com
admin.phone-list.com
www.pigtail.dev
css-html-playground.pirochta.com
mastermindtoys.productgenius.io
consumer.uat.propps.com
python.si
install.raceone.com
rajassociatescme.com
dev.reflect.page
www.reneechiu.com
www.roboticimaging.com
roundtables.io
www.satvikkulshreshtha.com
qa.app.sellia.com.mx
vtc24.simpliroute.com
webclient.sisapp.cl
snapscore.be
app.sparkhan.com
staging.sparrowteams.com
www.steelboi.com
qa-bpp.taxscribe.app
tecna-brochures.tecnaprofessional.eu
cc.thomas-zeitlhofer.eu
admin.tinkersprojects.com
tonym.us
www.trackity.info
qrcode.transparencywise.com
tucool.jp
dev.vaultwrx.com
menu.visity.app
outlook-dev.vsight.io
www.wandale.us
whiplashinfo.se
whiteoak-church.org
www.wittkaempers.de
www.yoursignificantotter.com
Other domains in certificate