Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=prunus.turnosweb.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 10, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D7:17:2D:C2:74:40:58:C5:38:D3:DC:7C:DB:E6:5E:63:29:11:38:09:7E:CD:7D:69:0A:55:7D:56:F6:C3:84:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-VNnlJiRx9Y95qi0NmjngUQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
u.firstfly.app
dublostudios.clients.05digital.agency
prod.monitor.api.coverage.28east.co.za
drl-roomplanner-test.3dcloud.io
drl-roomplanner.3dcloud.io
ray-modular-config-cert.3dcloud.io
52semanas.app
606cloud.com
aalishaarish.com
app.abikoutsi.fi
www.armstrongcleaning.co
canaldedenuncias.atuzcorp.com
www.b2b-sales-accelerator.de
barbersbuddies.com
tal-pickpro.bareretail.com
admin.bicoince.com
bokitrek.com
boxcointeriors.com
brettstoddard.com
byvseguridad.com.ar
camilatimachi.com
ceresec.com
cms.chaitimestudios.com
charuinterior.com
auth.chefs.pro
flash.clau.io
www.cliniquepharmacien.ca
www.cmcclymont.com
redapp.co.il
qlmn.xbot.com.vn
www.comunitaenergeticarinnovabile.net
www.corvallis3d.com
buzz.dailyspikes.com
www.datafun.ca
staging.degenblues.xyz
www.dimasfamily.com
translate.emlions.com
ever.gratis
app.everyoneallin.com
extrematarian.com
fishartlab.com
a0ew.foodle.su
gdgsrilanka.org
www.genesiscl.com
www.griffinghostwriting.com
www.groupwben.ch
innov18solutions.com
yurii-mariia.invito.link
connect.ivantruong.com
www.japanesegraph.com
jugasalfutbol.ar
www.staging-portal.k-9apps.com
mta-sts.kasedev.com
s.kcac.ca
kevinhilairet.com
www.kitjin.app
ledneon.cz
www.rk.legal.ee
www.lhv2.pt
listforgifts.com
matthewrice.xyz
www.medien-campus.de
scrap.mesbro.in
www.mina-rent.com
ovucycles.mitkowski.dev
www.mohitbairwa.xyz
myuncles228.com
naunahomeschool.com
www.naviralive.com
org.notchln.com
support.parkchamp.ca
pdgorille.com
picagenda.com
pndlowell.com
app.quarterone.com
dev.org.rayzeapp.com
brochure.reconise.com
www.repperpatterns.com
www.rubiq.app
faster.saay.app
natale24.samuelburlon.com
seejustin.co
test.shyftapp.de
www.smilesavenuedental.ca
www.speakingclock.org
nikolaosfininis.spectrumdt.co.uk
alaskaprediction.sqwadhq.com
alaskapredictionadmin.sqwadhq.com
jeep.sureshbabug.com
tacshield.pro
techvoyagernews.com
text2test.de
thecureventures.com
prunus.turnosweb.app
www.tusharkhattar.com
peeps.unirakun.app
adminv2.qa.videolink.app
db9.xptoconsig.com.br
koordinator.ypsilonsutaz.sk
www.zresta.com
Other domains in certificate