Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dash.caioizel.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 23, 2026
Valid Until
April 23, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:D6:BE:EC:C3:BB:BE:B1:BE:EC:90:AA:B0:9C:05:A5:C3:17:8D:F0:DB:A9:1E:CF:1C:4B:56:A0:D3:B7:42:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
wellnessspaindia.com
adwikaenterprises.com
www.alchemistmatt.com
algentem.llc
training.allvirtuous.com
anotend.jp
augrai.com
bbbl.app
www.bioviva-codekeeper.com
greg.blockwars.games
dl.brainwavegh.com
atendimento-admin.bsibr.com
publichealthmatters.bytekast.io
dash.caioizel.com
www.calvetti3d.com
www.capstechnology.co
cccentric.com
caelo.clau.io
kevinknits.co.in
compramostubicicleta.es
cornerpiece.app
canva2.cradle.work
gdpv4.cradle.work
hdc.cradle.work
deepglyph.app
dna2rna.com.br
tito.dubuyo.com
www.eastbaysportscamps.com
usefulsignage.easysignage.app
dev.mobile.gigz.empite.net
emreyahsi.com
demo.equine.app
estiasoftware.com
www.everhost.io
book.evertransitnetwork.com
doc.exabel.com
btw.exai.app
www.exciterfashion.com
gmms-directory.eywalabs.com
iq.fastspring.com
koana.faundry.biz
finance-tellars.com
fitwithsam.com
www.fleetsafe.io
play.flowiumapp.com
fluxon.com
bridgefm.fndrsng.com
share.foru.cool
project.frontfacer.com
fundaptive.com
devfest.gdgphilly.com
firebase.giiver.ovh
www.golang.jp
gruzmarg-interiors.com
2024.gvkontroll.se
www.hotel-jakobsbad.ch
inside.video
islandics.com
jose-cabrera.com
lalkitaab.com
lidhiumjs.com
dashboard.lvsb.com
mafya.online
massagetherapie-kurz.de
www.maximpekarsky.com
fourbios.minhacentralonline.com.br
monkeynote.app
design.nanzuipalomino.com
naturally-salt-poolaccess.at
links.newslist.it
pedrosouza.dev
admin-dev.pforceapp.com
forms.pupford.com
www.qrcode.page
radedanas.app
rotigenie.com
guia.rutasegura.co
competition.s2pafrica.com
paytec.sequentialit.com
servicefromhome.com
www.simplealbums.us
www.slyn.us
spharklabs.com
splendy.app
swiftdoc.com.au
banking.techforb.com
timethings.xyz
timmyc.dev
dev.toastie-toastie.com
topreco.com
totallystrong.app
dev-backend.tripster.live
uzaje.fr
veriphone.io
staging.photo.viet.run
vigneshgv.com
birthday.white.software
poll.xpri.dev
dna.zacharyjbaldwin.com
zndx.org
Other domains in certificate