Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=thoughtbeam.synapsis-x.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:BE:A7:AE:DB:78:D4:15:06:48:A1:0F:99:C9:6D:8E:92:76:B6:5A:7B:5C:6F:8B:F2:2D:2F:A5:0B:C7:D5:AE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.dges.app
dev.123abc.com
demo.aatnukesar.in
assets.academix.dev
adelestomi.hu
cortex.alibhimani.com
www.amay.show
portfolio.amirmustefa.com
www.angular.kr
www.artists-valley.com
gaming.avsemprize.com
ifk.bandygrytan.se
www.befergon.com
www.biosourcecorp.com
www.claudiomerida.com
thermo-express.co.il
www.adi-tech.co.il
admin.sflab.co.kr
license.kcert.co.kr
admin.coderush.cz
www.codoc.dev
www.app.coupocket.com
first.dhinesh.in
entrant.diversityinbusinessawards.ie
app.docsndata.com
testing.adminportal.ecoe.vn
web.equestrainapp.com
www.etkilesim.com
app.finderful.com
gaadin.com
georgekorsnick.com
download-app.gestorrh.com
hatemecauseyouaintme.com
it2000nhom11.id.vn
yulian-masha.invito.link
odanilo.is-a.dev
www.janardhanpulivarthi.com
m.rocket.junsoft.com.br
www.k2n.kr
demo.katapultwebservices.com
www.kbc.edu
video-dev.lfv.jp
admin.livingmeaningfully.ca
www.loganmcguire.com
luigiandreamoretti.com
marriage-angelic.com
test.sauver.med.br
auth-dev.multimate.io
shop.musicraynmall-capsuletoy.com
mysalahapp.com
www.rventerprises.net.in
www.nutstorm.com
superadmin-dev.omnicar.io
openstage.amsterdam
parthpathak.in
shop.plattoform.com
share-product.pltmarketplace.com
prepandhire.com
www.primeplexpictures.in
testing.provedor.app
www.recordkeep.fi
ex.redskydesigns.com
test-hub.romify.io
saledoce.com.br
www.hlf.salem.edu
simplyfruit.gr
annauniversity.skilluniversity.org
recipes.skitek.dev
auth.sonat.com
speakingathome.tw
www.split-it-music.com
dit.spotparking.com.au
link.storiusapp.com
www.streamer.nl
www.survaivor.nl
customerdev.swiftlaundry.mx
thoughtbeam.synapsis-x.com
szymczak.dev
taplme.com
invite.teamlocator.info
auth.th-ottv.com
theviewer.io
www.thylacine.nl
thyroidclinic.com
wedding.tiennghe.com
power-pilates.timp.io
tomasbaran.com
internal.trade245.com
troythompson2.com
trustlens.in
salud-autenticostigres.uanl.mx
geslachtdepauw.vandevliet.me
vbiresolve.com
link.vietmoney.vn
municipality.vote62.com
vsmirga.dev
wijn-proeven.nl
www.wildbrains.com
support.xtactor.com
zigital.cl
Other domains in certificate