Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=preprod.manager.rendezwine.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CA:FA:96:AC:50:1D:BB:B8:6B:9F:EE:3B:47:E9:4D:3A:27:1F:B0:E0:50:D1:1C:F9:C9:AE:9E:E9:09:9F:14:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tumainidussiri.com
a4al.lol
www.albertodelahoz.com
www.alxgcrz.com
www.amz-club.com
andyigg.com
stg.annold.com
www.atomstockoptions.com
www.baltel.com
www.bebabeggie.com
beti.ch
gpfrance.bfsp.app
callforhelp.co.uk
cardlist.dev
carthage-foods.com
storybook-react.carto.com
www.checkuper.com
www.chrisseils.com
webui.cira-cloud.com
www.cityscour.app
clikqr.com
www.closedcaptionai.com
promotion.cloud-racing.com
events.hansrajcollegedelhi.co.in
coara.co
fma-recipes.codeuni.net
www.chmetalhouse.com.pk
mikshina.com.ua
www.compriamolatuamotocicletta.com
www.cradletostars.com
dailyobjects.app
dallasdigital.io
similar.davidecampello.app
devpursuits.com
duckhunt.app
yatlunah.e2community.org
emmalahaye.art
mparkhq.equiem.mobi
hello.evercrowded.com
pro.fableconnect.com
fastsignsada.com
lieferschein-aarberg.galvaswiss.ch
staging.app.mysalon.goclever.in
growthcurve.kr
habithub.org
hshq.xyz
www.hshq.xyz
www.iamacademy.org
app-mobilecert.iberostar.com
enpit.iniad.org
itechcyberprot.com
jmind.co
koolstudio.pl
dev.eventos.linka.la
portal-staging.logichat.io
luisbravo.dev
www.lydiamassiah.com
www.melp.app
new.portal.mgnyconsulting.com
baby.michaelrissover.com
mindpack.com
facilities-test.mobilitymojo.com
stockmarketnewstracker.mokimokiteam.com
www.mumoin.com
hafifa.my.id
mycarrysun.com
www.mycity.mx
nanxli.com
zephyr.nopublic.ru
link.octo.app
adminapp.orizon-assurance.fr
www.paolomalagoli.me
www.parkspace.eco
location-map-dev.paxiplatform.com
www.peblet.be
www.pokegeo.com
atom.portfoliolink.co.za
admin-dev.rello.co
preprod.manager.rendezwine.com
app-qa.setkeeper.revolutiones.org
apptools.samanestudio.com
dash.seuatelie.app
staging.app.skaal.io
skillsmasterpro.co.uk
reset.skonnect.io
www.smartcooler.app
srivajralounge.lk
stoctmartket.com
tracking-test.tapnow.io
www.techamalgam.com
app.tennismile.jp
www.theo-vidal.fr
noel.thonex-centre.ch
totaltestandtag.au
tribe77tech.biz
tutamkhamon.com
vesbeckhandyman.co.za
www.weedlink.de
www.wickedairbrushcolors.com
new.wishup.co
Other domains in certificate