Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dev.kakaonline.vn
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 30, 2026
Valid Until
May 01, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:17:12:FE:96:19:F6:E9:B4:FD:E3:D6:38:D4:19:AA:8A:83:59:3C:8B:7F:6C:EB:5E:9C:B9:92:5B:A9:CB:D2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
udrc.com.ua
64bit.app
www.9newscorp.net
dev.ih.ia.up.ac.za
www.acventertainment.com
aintegrate.ca
reports.alis.mobi
angularux.com
assevilla.com
app.atlas.support
appadmin.beezpz.com
app-dev.beitary.com
berengerebrisker.fr
booksonparade.org
mathtt.buegitim.com
link.bumping.app
www.cangimar.de
mobilecms.cbsnews.com
clearchoiceinspectionsllc.com
nexusdocs.staging.rancher.cloud-h.net
www.lytfix.co.ke
anishrai.com.np
dancewithme.be
darkmsph1t.io
www.designerz.in
dotactual.co.za
dranixcomputer.com
demo.app.eatpresto.co.uk
lyrical-bomb.eliaz-lr.dev
elitecard.ma
elvoenriquelvo.com
demo.equipopersonare.com.ar
www.esportsweb.in
www.etailer.co.uk
apidocs.library.ethz.ch
noodome.event.rocks
everbount.xyz
everydate.app
app.fantascelta.it
tools.feifeier.com
fmn-dev.chat
fnlanguages.page
dev.getrentline.com
i58info.org
apply.indigo.id
institut-hypnozy.cz
www.intelly.solutions
igor-mira.invito.link
stage-masterapp.isthara.com
www.jupitertexassolutions.com
dev.kakaonline.vn
leerkosten.katalysatorduravermeer.nl
keiyogas-housecleaning.jp
limuhong.com
luciestrnadelova.com
m5-portal.app
manishjaiswal.io
marsecode.fi
beta-rh.monee.com.br
www.morita-farm-kamakura.jp
archival.moud.ly
movation.sk
www.niftyone.co.uk
officeshiro.net
www.omnia.tel
lexsc.opendata.report
www.pienter.tech
piubellaspa.net
pixelmower.com
alpha.poker501.com
get.powerpal.net
www.psichiatriatranspersonale.it
qitech.app
realgray.net
biobio.rflex.io
rootjs.dev
stg.salonesdebaile.es
www.scancompetitive.digital
sunoutdoor.showitmax.com
www.shop.slowvillage.hu
saul-goodman-investments.blaze.solerabank.io
www.speedcubingportugal.pt
www.stanik.in
api.storyhunt.dk
hug.strollhere.com
drift.styreportalen.no
prev.synergyca.jp
www.thebeautibulls.com
tigerbilar.se
auth.google.sp2.tv.br
expo-congresoverde.uanl.mx
flutter-preview.una-community.com
ladders.vanbodegom.ca
www.vertexhub.app
virta.me
www.vjyothi.com
www.westonsthai.com
willwilsondev.com
academy.wonglok.com
zaryn.me
Other domains in certificate