DNS Gurus
Open Cached · 1h ago
77/100 SECURITY SCORE

Certificate Information

Subject
CN=demo.bisflow.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 27, 2025
Valid Until
December 26, 2025 44 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:07:DB:3B:FE:0B:35:56:62:60:07:99:A5:B2:C9:09:5B:9B:26:65:56:27:C5:93:D9:F9:BA:13:A5:69:49:98
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
webwise.co.il

Other domains in certificate

abijith.dev
accenxis.com www.accenxis.com
www.adeptrecycling.com
www.alcovex.studio
links-dev.algometra.com
animalbook.art
chat.apptreeio.com
rpc.aztec-international.eu
demo.bisflow.io
sumamoru.bitlock-ticket-service.jp
auth.boaters-boatrace.com
www.bwemanje.fr
auth.checkers.online
voyager.chikoo.app
www.chossonandkallah.com
hrms.stulzindia.co.in
www.codeapprove.com
www.stoiccapital.com.sg
creativibes.life
mvp.crosses.app
www.danfiumara.com
dashboardinspections.com
frontend.datenkraft.info
dinergame.com
doncalle.com
dosatodollars.com
dragonsalley.ca
earthkeeper.com.ar
admin.erdoportal.sk
watch.etisalat-tv.com
web.everlyapp.com
christmas2023.goodylabs.com
gparquitectos.mx
gujaratisamaj.nl
hivegrant.com
ideas24h.com
igdpn.com
ofgem.risk-radar.illuminet.digital
portfolio.interimadd.com
public.isoms.co.za
www.kanji.rocks
katonakesek.hu
dl.komidaz.io
thre3.kro.kr
www.lestourneesdesproducteurs.fr
trackbot.letusense.in
lhumain.nl
lullabook.pl
marazsir.com
marc.chat
www.matthewjwright.com
www.mikebodge.com
admin.mingaku.net
shikaku-kaigi.minmeeting.com
www.mirakim.com
mithrilhq.com
www.naturalfertilityofutah.com
nick-nadeau.com
nyami.cat
app.omegaconstructionmanagement.com
oneboard.live
scan.bridge.orai.io
www.payprz.com
web.home-insurances.demo.photofied.tech
app.psm100.org
quiz.party
test.api.resly.com.au
rhemaboyo.com
rivalsteamup.com
rivervalley.company
vitracking.roadcast.net
rocket.pr
www.royaltyfreestudios.com
russwhelan.dev
www.schroer.ca
www.scimos.org
scmicwisconsin.com
scrollking.net
app.seni.mx
www.shop.link
shvason.com
simpli-budget.com
virtual.southbendcodeschool.com
www.stefan-gregor.de
stevencc.dev
admin.sushibelgium.be
calculatedmoves.tallyfor.com
www.thedentalcode.com
web-app.thegoodgoalapp.com
kps.time-lapse-systems.co.uk
trainslot.com
transportesaviles.com.mx
tugsdelgerekh.mn
venturecafetalentportal.org
vieclamfreelancers.online
eazi-byls-bridge.waitr.co.za
screens.wntr.io
zdravko6t5.site