Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=meeting.danghoangthanh.id.vn
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 20, 2025
Valid Until
February 18, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:E5:4C:B2:46:8C:77:BA:9F:A4:55:CC:32:99:07:33:43:C5:D4:A9:99:33:07:54:E3:C0:57:A4:4F:71:B7:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.bsmscitech.com
adamrichards.me
www.adwind.ca
www.aseprop.com
backtopiano.com
bisericilive.ro
budownictwoks.pl
cardopayments.com
holidays.catalyca.com
cellphonecprx.com
dev.roadrunner.cinedeck.app
www.citybrewsurveys.com
next.cloudsoundboard.com
applink.uat-mp.co-op.crs
www.investments.pacificacompanies.co.in
web.matsang.co.kr
cordotecido.com.br
creatorvideo.ai
www.cursed-genes.com
cyberseclabs.io
link.dagiver.com
customer-portal.decisionrules.io
www.dhammaparami.lk
admin.stage.doc.cr
dashboard.dufendach.com
ecoinscan.ecoe.vn
www.evgsistema.com.br
forum.fandance.ru
fkraus.dev
fullstackjeff.com
www.g2gfest.com
www.gpso.se
guerrerosarcade.com
helpfl.app
lehuy2725.id.vn
meeting.danghoangthanh.id.vn
sondtt.id.vn
foodfacts.ikea.us
namalapp.innolab.global
cloudtime.innotopic.com
sanroqueexpenses.innrsys.com
inzuyamasaaba.org
development.joinflux.com
dcs.katapultpro.com
printables.kiddopia.com
www.kisscalls.com
app.klikklaar.com
www.kreaplace.dk
la-suite-des-charmes.fr
www.lajanm.com
lavanderiastilla.it
scribbl-dev.letsdive.io
blog.lewisingram.com
www.markably.io
app.meeymap.com
www.mergemega.com
mvc.minimal.cards
mkplabs.com
www.mork.pm
admin.neurosonic.fi
klaver.nsbp.dk
blog.ommbe.com
orquideasibericas.info
web.parakh.me
pastecube.app
pfaahilyanagar.org
www.pjlaw.org
www.pointfood.com.br
polar-dreams.ch
vasylenko.pp.ua
www.priceofglory.io
www.princehodonou.com
richard-ansell.com
rifindia.com
roosterra.nl
qpr-dev.scouthub.app
qprfc-dev.scouthub.app
www.selfcouriers.com
mymeet.set.live
liff.supavineesupply.com
supplychain.fr
www.sykango.com
firebase.test.szumma.com
keeper.tclee.dev
fennixbeachclub.thediners.in
tjautoworks.com
tobiasbecher.de
assessment-es.twiser.com
admin.usemason.com
benwoman.vetrina.com.br
www.vogel.app
poc.voicekitt.com
www.wakinchan.work
webreportingstudio.com
account.weightplan.com
wifessharing.com
williamyip.info
www.workhonesty.com
wowchee.site
omyule.xiaoyifei.com
Other domains in certificate