Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=staging.myjunto.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 17, 2025
Valid Until
February 15, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DD:89:10:0B:72:2E:3A:D4:01:94:D7:9D:44:78:35:F6:DC:CA:CA:8A:2C:0E:81:DE:CA:5C:14:F1:FC:1D:23:29
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.cafe.bio
ambulatorio-veterinario-parco-monta.it
assetstore.wtf
atelius.org
www.atelius.org
baker.company
m.begrateful.org
solar.blueenergia.com
moderation-staging.bluerobot.com
bradleytenuta.co.uk
burton999.com
www.cangubusca.com.br
casaruralleonor.com
dashboard.cashmerefoodbank.org
www.casperzandbergen.nl
qr.ccron.jp
www.cmssurveyresearch.com.au
www.gmpl.co.in
timetables.geliana.co.ke
ss.studentstay.com.na
web.combatgo.app
www.coneytechnologies.com
appv2-staging.construyo.de
corbelladvocats.com
corcolen.cl
bj-admin.cross-switch.app
afiliados.dexterfibra.com.br
www.diskretmatematik.se
edurd.xyz
app.elvio.in
ui-test.elvio.in
www.enthusist.com
personalbillett.dev.entur.no
ferramentas.eskda.com.br
eternalentropy.org
www.expert-tease.com
free-bee.tools
stg.satprep.fullmarks.io
create.ghib.net
fangdai-test.gitapp.cn
galfojo.globaledu-j.com
help.grace.app
www.granmercadotcg.com
okt.gtoybox.net
domino.gympn.cz
hasbase.com
head2headpuzzles.com
test-domain.humble.is
www.hyeji.dev
anhcuongsoict.id.vn
lutronghuy.id.vn
web.applider.infobrcorp.com.br
eventos.isladominicana.com
html5.joikid.com
login.joypop.gg
www.karpetstudio.am
kolore.app
bible-web.langcp.com
admin.leaderabogados.es
lootingsimulator.com
magamkert.hu
plats.metafood.tn
mhldigitalmarket.com
cnysef.most.org
minecraft-clone.mrk21.app
myfridge.xyz
staging.myjunto.app
admin.ngothuytramy.com
ngothuytramy.com
room.ozdinc.org
prath.am
app.psicologus.com.br
remittv.com
rother.app
samsonc.dev
signature.sawa.rocks
shawnbarbel.com
sa.siparareserve.com
smartlive.smart-systems.co.uk
www.smartuser.app
stefhock.nl
storkee.sk
app-stage.surescoops.com
app-test.surescoops.com
app.surescoops.com
web.svs.ong
hiemdall.thathaus.agency
www.theharispa.jp
hl.ugattaplay.xyz
dashboard.development.vendpark.io
wallet-devnet.verifiedx.io
www.vitaliceconsultoria.com.br
voya.live
lkpasahicilacap.web.id
portfolio.webgeon.com
wojas-bazgrolety.pl
test.wowtalkies.com
auth.wrangle.us
www.xavierboluda.com
demo1.zentorks.in
Other domains in certificate