Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=customersupport.wallit.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 18, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:AD:37:43:30:E7:94:3D:7F:2B:4E:DA:A4:4E:94:4B:12:FF:80:B9:E6:09:93:26:31:64:06:76:3A:23:53:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
vanord.com
www.1spot.app
9.typeforce.com
www.after-life.app
link.aga-online.clinic
www.andrada-alex.com
www.angulardart.dev
checkout.anoraspaces.com
fifa.blank.no
ehndbxpagnap.brandbassador.com
braulioherrera.com
attribution.callbreak.com
celebratenationalholidays.com
www.chillcourier.com
www.hitechglazier.co.th
columbuscandy.com
menu.numnum.com.tr
www.combat-sport.club
coocent.top
countell.com
www.craniomax.com
cryptostar.one
cupimgrillchurrascaria.com.br
job.daamtu.com
daddyissues.club
www.darlingwebservices.com
target.dataplace.ai
dclutter.io
denegociants.com
www.despertame.org
dragzambrano.com
emorizm.dev
portal.esgt-benin.com
fluxgold.xyz
a09i.foodle.su
termos-e-politica.fretec.app
galaxy-restaurant.com
dazed-and-confused.gelstronic.de
www.goksel.co
goobisgabe.com
www.guildautomation.ca
www.helloshelfy.de
www.hotelrestaurantdusoleil.com
icesculptures.com
carrierservices.ielfreight.com
jeffweisman.com
jonassjoh.se
josiesfashionboise.com
performance.kamiapp.fr
www.karate-do-prien.de
www.makpropiedadesindustriales.com
marivax.in
www.mentoro.app
pr.mergefly.com
evaluate.walmart.mobilitymojo.com
www.multitoot.com
dev.vvk.mv-gechingen.de
referral.mykit.in
www.nescorp.in
link-contem.nibo.com.br
www.nicoyuste.es
oneinchlunch.com
www.onlyszar.com
www.oxesoft.com
personivate.com
pixels-by-rohit.click
app.poke-do.com
potocu.com
app.professorsmart.com.br
study.racademy.co.uk
ram-hub.com
cms.rcloud.dev
redtailapp.link
www.ridinginwales.uk
sarankumarrs.in
satconvert.com
securefutureinvestments.com
sliceq.com
staging.smartodr.in
ies.snapmentor.no
syd-demo-app.speakylink.com
www.sugarcreekresearch.com
www.hosttest21.test.sumanaetech.com
tegamimovie.com
thaaiamudhu.com
forms.thangved.com
www.thoots.ca
www.tirikaexpeditions.com
members-stg.traktrok.com
www.tvt.fi
www.v1.typus.finance
visualgamer.net
www.wallas.world
customersupport.wallit.app
integrationadmin.wallit.app
waterboyapps.com
www.windirgo.com
user-page.with-marke.com
xavierkine.com
xtrphoto.com
Other domains in certificate