Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.busquenos.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F3:6B:9D:A4:5F:99:B2:04:2F:92:AD:E9:CF:EB:C0:47:D5:F8:08:1C:3F:0F:FC:5A:F9:79:1D:E9:0D:DD:C8:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.epic.world
www.abcvirtual.app
uat.web.aglive.com
aissy.app
cms.appcharlie.com
atfirstsite.app
aureusrex.com
test-billing.billnote.in
test-link.billnote.in
morse.birwi.net
app.busquenos.com
byte-invent.com
c-e.app
cabinetbuilder.app
www.careeriq.in
app.carolinaaquatics.com
track-app.centauri.digital
chuchipirat.ch
www.cloudedgedistribution.net
www.reblood.co.id
www.legalarena.co.in
www.theodysvadhyay.co.in
www.codedon.dev
www.chinmaypotdar.com-cloud.net
m.yurich.com.tw
uccloud.com.tw
app.cynch.com.au
darkowl.app
dashbohrd.app
www.daza.com.co
dilo.cc
fuji-no.for.dinii.jp
dev.employer.diwala.io
eastern.sgu.edu.in
dev.checkin.northlineschool.edu.kh
www.exbrain.me
www.exporthealth.app
ga4summit.extrai.app
www.fffmedia.live
www.finzen.org
www.gobaffle.com
code.gobrilliant.com
www.grupomanoamiga.mx
haikoo.io
www.hash2cash.app
iamezra.us
www.imasc.in
mathmantrabypankajsir.indiandevelopers.org
attractive.itsltd.online
www.iwillf.art
www.jaksadev.com
captable.jcurve.app
manu.kor.solutions
www.lemetrika.org
ddapp.lexcellence-grp.com
www.linusacademy.in
b1.looplive.hk
admin.meltinpot.org
www.mgproducts.app
www.minecraftxpcalculator.com
manage.mitemma.de
www.mlifetools.com
mohammedpascal.com
www.mytouronline.com
app.nepoti.sm
v12.ngrx.io
www.northwestacademia.co.nz
ntredovisning.com
equipment.paddock.onlinewebapps.ca
links.openup.chat
c.oranj.app
owneasy.ca
www.panl.co
www.perelkawroclaw.pl
www.plaisir-tw.com
www.ppengenhariadeformas.com.br
roundtriplabs.co
saferhomesbc.app
hub.socialbluebook.com
songcarousel.com
spectertechnology.com
hangman.szabonorbert.me
www.app.thebeachsamui.com
toaster.app
trackingto.app
corpo360.turnosweb.app
nordicus.turnosweb.app
trendy.tweetyai.com
auth.voxarg.com
vvriepas.lv
missionplan.washingtonutahstake.com
kaiju.whatsthescore.co.uk
www.whitedoveassetlimited.co.uk
www.whitelightsage.com
www.winkpass.net
winnipegtransit.live
company.eu.wow-dev.org
xsfera.ru
platform.yieldex.org
yni.app
Other domains in certificate