Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.portal.qvin.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 22, 2025
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
97:D6:06:8A:15:97:3F:8C:F5:8F:2E:1E:A2:92:23:71:50:01:DB:9E:5E:35:03:20:8B:FB:88:7B:7E:F6:D6:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
weeknotes.app
calculator.alexwicker.co
americaheard.com
appetizingdev.com
www.appetizingdev.com
arc.gay
dashboard.arusoil.com
www.azrasoft.com
demo.dashboard.azzle.com
stage.barhelper.app
mamacita.christianloschiavo.com
sso.consultr.net
qa1.contingenton.com
admin.control-de-horario.com
cosmedical.ca
www.develocity.gmbh
dirksdoc.com
festival.dreamwave.tech
drexpertedu.com
e2eagency.com
link.staging.elektropod.com
beta.ca.emcedev.link
lokalgr.backoffice.emporix.com
www.expenselens.com
famboos.com
backend-staging.favstay.com
portal.favstay.com
events.flamesbarcelona.com
gopavel.com
grassrootscare.org
grikk.co.jp
groupwatch.hagertech.dev
www.hedgehappy.com
www.hierojapepe.fi
api.impactcustodial.com
eating.indefini.do
spatanyaodessa.info.vn
integracionweb.com.co
link.kjhmath.com
desc.kpeyes.app
kuik.mx
macs.kyas.com.ar
www.leonardofontana.it
lifeand.dev
www.luzdomundo.church
quartz.makro.ca
maneeshas.com
mrmojito.in
www.multipleintelligencehub.co.uk
violet.narau.app
xr.next-system.com
www-test.nodeforms.com
noelaubureau.fr
makelaarsland.pensioeninzichtonline.nl
portaltibisay.co
www.prepify.live
prestoforgings.com
www.primerobasicoa.cl
primitivemachine.com
admin.reforca.prouser.co
app.reforca.prouser.co
quamspeakers.com
questionimpostor.com
quidpace.com
dev.portal.qvin.com
zzzpod.rethela.com
runwayspot.com
www.rwmclassroom-staging.com
salespilot365.com
www.sandcube.com
stevemay.app.sensibly.com.au
firebase.server-dragracesuperstar.com
vaccine.sharedchart.care
siendonerds.com
simulationbio.com
skytwosea.dev
invite.slowly.app
smarepo.me
softtouchpainting.com
spacewarriors-club.com
www.spotforest.com
starfurniture.com.au
gym.sweatwell.co.uk
admin.tiffin-time.com
www.tradapp.net
mybyu.trumank.dev
pstcenter.turnosweb.app
admin-antualfama.unem.digital
unicoderns.com
unirestaurantclub.com
search.upstageai.com
vachanampodcast.com
dev.vatsim.fr
viewksu.com
vincentjq.com
www.wavefoundry.io
webigor.com
www.wermoongrey.art
app.yotalien.com
yourgrowthbuddy.com
Other domains in certificate