Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pandus.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:9F:3C:D9:07:0F:CB:FB:AA:58:0D:DD:CF:8E:42:C7:2D:36:1D:6F:8A:57:2C:CE:EB:11:E3:52:B2:CC:D9:03
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
webapp-qa.yardian.com
webapp.yardian.com
anuragajwani.com
bento3d.design
beovoz.rs
courses.bezkoder.com
blehu.com
www.boulodromes.com
cards.buja101.com
web.cabotagestudien.com
calvetti3d.com
belfry.camino.solutions
www.chordcharts.io
cic-usm.com
my.classroomapparel.com
leadtek.co.th
www.coachdanatang.com
conri.pics
docuploader.consumerlaw.com
www.couragile.com
financialgenie.creditpro.hu
stonehenge.creditpro.hu
www.dawnaudios.com
dolomite.io
www.dubu.fr
www.eduard.digital
education-dashboard.com
audit.elight.com
www.ellistrin.com
fantastic4wheels.com
app.fantasyfastshipping.com
tnucn.femiglobal.com
www.fhamortgageloanlimits.com
platform.fixify.app
www.flexon-tech.com
staging.play.gamoteca.com
assets.gen.co
4c4.getemplaza.com
gouldenratio.com
www.hcodeit.com
ui-kodepro.hebbale.academy
henryapp.io
hessman.se
staging.imfuckinghungry.com
docs.influxhq.com
insadis.com
irmelivaher.com
chores.jalowell.com
portfolio.jensettl.com
cv.jokko.app
jot-fox.com
kernels-analysis.eu
amad.klikada.com
zam.klikada.com
landrycarroll.com
laurieontech.dev
webutils.learna.ac.uk
www.linkr.cc
lmcalc.com
summa-b.m1studio.co
auth.mantora.io
metlien.com
www.mfrancis.dev
exercise.moakly.com
www.muontelescope.com
musicplusfood.com
native-exports.com
link.nekto.com.br
obama-history.net
eye.omen-audio.com
openmk.com
dev.optionality.io
backoffice.ouropretoinvestimentos.com.br
pandagarden.net
pandus.app
links.passto.app
flash.paviado.com
planphy.com
prakharrathi.com
ptjacobsen.com
webmenu.restomax.com
dashboard.reviewbiz.io
ruokaloki.fi
conjugation.sayitfirst.ca
www.shivohamthirdeye.com
www.shomil.me
www.simulasi.studio
en.smartberry.online
sphere88.com
sample-landing-page.splmns.xyz
geki-keshigomu.spwn.jp
www.ssppgolf.org
translator.talkingpts.org
www.teaganskitchen.com
blog.techramblings.dev
vislijst.nl
bodyfit.webplayer.fit
wellprofiler.com
www.weoutthere.com
a.xiphoo.com
Other domains in certificate