Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=jkbox.turnosweb.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1C:4E:A2:47:3D:C4:AD:D5:70:B2:07:16:8A:26:F3:6F:2E:50:10:E6:6A:95:4F:7B:40:36:59:B1:94:B4:36:CC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
windoe.link
www.5bits.it
www.abdulmuhsin.dev
adminde.com
amfc-wallet.com
demo.angularacademy.ca
redirect.apap.pl
blog.apxor.com
www.ashfrrd.co.uk
aydingokce.com
www.beitary.com
cadrify.com
mybasket.clau.io
traxx.clockwork.ws
backoffice.lab.cloudintercorpretail.pe
staff.greenmarker.co.in
www.contabsmart.com.br
portal.test.crilabs.net
crypto.data-i-consulting.com
ao.deal-engine.com
begin.decodedetroit.com
divergentes.online
dpl-logistics.com
www.drathaismicheletti.com.br
admin.dungeon-stories.com
eileeniweenie.com
backoffice.emporix.com
engineeritech.com
beta.ert.credit
expedition.lighting
felixpham.com
auth.finalsite.com
healthypet.fitbit.com
widget-v2.froged.com
www.georgeblanchard.com
www.getrandom.one
nadim.gkhneisser.com
www.gplps.org
guiasincelejo.com
geta.haloar.app
havokmaster.com
hellocupcake.co.uk
www.hitcher.app
impulsemobiles.com
ingrey.dev
iqwebbotlocal.com
via-release.ischoolconnect.com
jadibooty.us
jasira.com
corretor.jotajoti.com.br
www.kdppsa.ca
kelvinsight.org
lerchdrums.com
listandearn.com
qrh.liverpool.com.mx
medoc.com.mx
admin.merlocode.com
bestellen.missrendang.nl
momoword.com
moneylovin.com
mortgagemathcalc.com
nexilo.uk
link.olar.sa
optionenhandeln.ch
starsforemma.ossium.co
dev-i.ound.me
www.partydredge.com
patthulen.com
www.pixelplux.com
plasticjs.com
beta.platformheroes.net
pompes-funebres-compare.com
prakritivermadesigns.com
purplelabs.dev
toolbox.researchout.com
rprashanth.com
www.ryan-lee.org
safeharboronline.com
www.scaevola-conspiracy.com
www.scienzaludica.org
panel.shieldmoto.mx
nazonazo.shinonomekazan.com
www.soulcodesolutions.com
www.spiceauntie.com
spider-lake.com
online.sreeayyappatemplevasco.com
studfinders.org
s.tamilanjobs.com
tandemanalytics.com
tesslagra.com
www.theendoftheweak.com
jkbox.turnosweb.app
dev.aura.upswing.global
cms.vietyen.net
www.vinitaisnotana.me
panel.we-jump.nl
www.whitebear.asia
invite.woki.ar
www.yogalaya.com.br
znajdzmail.pl
Other domains in certificate