Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.storydna.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:DC:E8:29:BC:F5:3B:A0:23:C0:99:6E:22:A9:4D:16:6E:4A:E5:81:98:19:FC:CF:54:AF:20:7D:1A:82:C8:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tokensale.madnetwork.io
www.7bunnies.com
amazdev.de
updatetravel.andyafk.com
artschool.lv
www.atlasone.co
bigbad.ca
bookingroad.com
brendonhudson.com.br
menu.caffeitalianomantova.com
cereshub.com
www.characterplan.xyz
cleanbox.co.il
pizzaroma.com.ua
app.dapani.gr
auth.dev.deli-holic.com
www.drvenkatramkidsortho.com
clasificados.elsoldeleon.com.mx
www.equallyarmed.org
dev.my.fareclock.com
farmfreshmarketfinder.com
blog.fives.tech
tools.fives.tech
support.flightgauge.com
republicano.fonthe.com
app.foxwayapp.com
gettalentriver.app
www.goinline.ca
graph.com.pe
app.groovetime.com
www.handsofcare.ca
happyandtrails22.com
hautesafari.com
helios-robot.com
heylesoft.com
api.hkfd.co.uk
www.huntertran.dev
ibisconstructions.com
dashboard.inlabdigital.es
intosouthafrica.com
app.intouchwe.com
www.jacksonsquarelaundromat.com
jalaw.fi
alcoholzelftest.jellinek.nl
www.josesuero.com
www.jotthis.org
www.junghans.dev
karst.dev
keeplabs.com
www.mylab.laboratorioclifford.com
www.larskiilerich.art
nara.linx.live
littlebuckers.com
www.lolita.cafe
www.longsien.com
marcscomputers.ca
www.mareah.com
metamaster.app
www.morganamurray.com
www.mudanzadirecta.com
www.mudanzasonline.com
www.mynavrang.in
pic-paag.mentor.neccton.com
internal.nextgatecapital.com
www.pipeline.nkportfolio.com
accounts.novafutur.com
app.onemorestory.com
onevault.io
oregonlawmagic.com
www.oregonlawmagic.com
dashboard.paladindrones.io
www.panjs.com
picosearch.app
www.publier.app
rajratnanaturalproducts.com
usi.scansies.com
www.sdmslask.pl
www.servedr.com
sheffieldadvantage.com
shop.shinonomekazan.com
sivakasisendhurvelancrackers.com
dev.snow-valley.net
spase.io
www.ssbuffingworks.com
stashed.app
dev-app.stebam.com
app.storydna.app
tertius.app
thaddybear.com
trytalentriver.app
www.tweaktext.com
twiddlemeister.co.uk
www.txtarea.com
uzu.one
www.vegcrust.com
pocketrfc.verzitex.com
dev.vida.studio
www.wapleystables.co.uk
www.wink.online
xcan.me
Other domains in certificate