Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=clinico.audeara.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:24:C9:1F:8A:BF:4C:E6:E7:EC:3A:05:C7:69:4F:07:43:C3:78:25:A0:61:43:76:F4:C2:A8:D8:26:93:C7:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tt.todi.mx
souzaerossi.adv.br
appointohealth.com
as-support.tech
clinico.audeara.io
automachr.cz
adp-dev1.avgidea.io
www.baggr.uk
banklog.mp
app.beezpz.com
bisflow.io
www.bitfog.co
dev.buildas.io
www.etoro.bullsheet.me
calebglass.com
capitanjohnny.com
cedropi.ovh
teachers.centrulminerva.ro
cjbangert.com
www.cloudtank.ch
daltonhenderson.com
invite.besedka-api.dar.tech
data-puzzles.com
davidku.pro
app.dayadaya.com
d1-myshipments.dpd.co.uk
qa.dynamicloyalty.ai
eneobia.com
firebaseconsulting.com
admin.found.cloud
globalitc.org
www.gofora.org
app.milana.graphite.space
atami-survey.groundnode.com
growth.cc
dev.app.halodao.com
www.hanko-maker.jp
www.iatrus.art
universal.itstrending.in
jmjsistemas.com.br
staging.joinjobox.com
kazokuexpress.com
meetings-dev.kickscale.com
kortexa.ai
kreahr.com
www.kumia.net
www.kybtransport.com
invite.larissa.network
letswandr.com
lmdevstudio.com
tag-puzzle-open-2025.logicpuzzle.app
movie-db.lucianiernye.co.uk
www.meetingcontrol.live
admin.megastaging.ca
www.mischty.com
mykameti.app
mypanic.link
admin.mysmartlox.at
www.njchyd.org
app.ffm.nxt-lvl.ink
cross-border.oh-tam.com
bazz-app.oz-tms.com
patrickgabala.com
portfolio.pimpapat.me
thitsanelectronics.piticommerce.com
procpro.com
www.qorbani.com
racinginfo.com.au
rawer-workshop.ru
staging.rollingtrans.com
ssg.rouic.com
teachings.sasanm.de
sbuh.se
scams.tips
app.senim.kz
www.simonyiutiovoda.hu
sheetviewer.simplexmobile.co.uk
skwai.com
www.smartq.store
www.solitr.com
soulh.dev
spheverse.com
app.sponyo.com
francis.taskfs.com
www.telltouch.com
theoriginalrubhub.es
www.therebbesohel.com
apps.thesim.com
www.theticketbot.com
www.tiangewang.co
tinyquiz.io
tlic2024.org
ensolweb.venttu.com
www.wedding-helena-fernando.com
whatwearandwhen.com
www.wirelessbro.com
wlstr.co
xcovers.gr
webmarketer-admin.yabawt.net
editor.zodhyatech.com
Other domains in certificate