Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.zohari.tech
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 22, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:07:82:11:D9:0E:21:58:F2:23:65:A8:E2:CF:B1:A6:8C:B1:68:A8:A7:AD:65:EC:85:0D:AF:AD:92:C4:C7:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
trashfusion.org
certificates.lapp.advancedlapp.com
airscore.eu
m.aisa.solutions
demobutton.allezemm.at
app.alpha-crm.de
www.amandhiman.dev
www.amarouter.org
www.arpithaexports.com
bitsindia.in
shop.bittideals.com
kwissle.buzzel.nl
canamexcursions.com
cms.dev.challengeacceptedapp.com
www.chautauquainterconnect.com
www.christianbaker.dev
tryacai.clau.io
clickspace.game
www.app.citycar.co.il
l.vsinternational.co.in
www.famousfood.co.in
us.codersinhoods.dev
signature.minegocio.com.ec
demo.deepen.dance
anuang.devangk.dev
salasa.devsy.tech
joao.digitalknow.how
elenao.org
stg-auth.fat-collection.com
www.fjalaedites.al
admin.fod.live
stg.footballlog.pro
www.frozr.io
www.getboutiq.com
www.grupobetel.com.co
www.guibl.com
hcpsonepat.org
www.hcpsonepat.org
order.healthpointe.team
www.heum.tax
hometownhiring.com
www.ikigaicareercounseling.in
issu.ee
finara.jasir.dev
jennie.fit
jimhalewijn.com
f.livepanel.co
logfile.support
luckydraw.tools
www.melba-pro.de
www.micyd.cl
multicart-dev.mikmak.tv
test.mischiefstudio.co.uk
www.mixablestudio.com
modulardesign.homes
www.muhoskellari.fi
www.myalias.page
www.mywordle.me
namba.design
nchejireh.com
nightvsknight.stream
nikinadruhou.eu
widget.pms.sandbox.nowlvble.com
google.nzdu.com
onlinehindityping.in
blog.opensourceclub-univ-alger1.dz
pacifictigerscamps.com
web.paven.io
sachsco.portal.plenadata.com
www.promptpay2.me
occupancy.qeiicentre.london
blog.querier.io
quidone.com
restandrelaxvacation.com
robertlawrenceparker.com
bestellen.rojs-pizza.de
savelocal.org
smrt.scry.one
www.sdr-trenchless.com
staging-rbt-sam.service-unicepta.de
mocskolodo.setalobudapest.hu
www.shatteredsoulgame.com
www.shopeatplay.ca
www.simplyvijay.com
ai.strategicgss.dev
www.superdroptaxi.in
www.thenetworktap.info
www.tomasgoncalves.me
tonitasmexicangrill.com
tornesomesoamericana.com
trackworkouts.info
trembathapps.com
twinsters.me
beta.webapp.thrive.uk.com
csmphone.water-fetch.shop
welaika.dev
searingcrush.wildgaming.com
bpm.workeo.mx
www.zenkayak.com
app.zohari.tech
Other domains in certificate