Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.form-factory.studio
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 24, 2025
Valid Until
February 22, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1C:22:AF:B5:AC:89:1E:A8:26:96:96:4C:3D:84:C1:10:F1:04:C0:80:F8:55:66:0A:BE:79:87:31:60:36:6A:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.form-factory.studio
dev.iteam.28east.co.za
pvp.acadarena.com
afrontare.com
memory.251019-restock.amnotify.com
areyouhouseready.com
assuredflow.com
ataraxiausa.com
www.bexarsoftware.com
kojo.biz.id
beta.boardgamehaven.com
www.bongato.com
botlabs.co.uk
bralife.com.br
lease-tracker.budgific.com
clienti.cantinedellacorte.com
carcamarchive.com
materials.chi46.com
www.cipreotti.com
static.cityuge.com
www.clapcampus.kr
infoapp.brainshake.co.il
test.connecthumanity.fund
crownaddons.com
www.d0rfforge.com
www.degreensustentable.com.ar
www.dein-transkript.de
shplist-5.dev-ltl-xpo.com
www.devicefield.com
diaroogle.com
dijonexpress.com
operator.einride.systems
elusivecar.com
ennellgroup.com
eventwood.no
www.evidencehunt.app
www.falcon-ride.com
v3.farmerstud.io
www.frogpos.app
fromapot.com
hausarena.com
help.hostmeapp-qa.dev
imperialinfosys.com
inkuire.com
joycechild.com
www.joynetiks.com
app.k1driven.com
demo.keynate.com
kine-kilian.be
www.knnect.co.uk
app.ledsc4.com
www.lentoon.fi
inventar.info-ag.leoboedeker.de
leoz.it
whitepaper.luciaprotocol.com
atrist.lusive.net
theatrist.lusive.net
www.virtualexpo.matsumototd.com
maxx.coffee
mealplanpilot.com
mehu.app
dev.mjvirtualevents.com
comptage.mmcode.fr
app.mpledesma.com
fortapp.naxelgames.com
ma.net3marketing.com
neuro-gymnastics.com
nikol.ai
smart-git.njrafi.info
neurix.nodeshift.tech
homol.checkout.subscription.pay2b.net
www.pintraveler.app
rinkeby.api.pixereum.io
www.planebooker.app
plentyofpostcards.com
www.quoori.eu
links.racetrac.com
www.rhlconsulting.org
roflbook.com
www.simbo.sh
softmakeia.com
spartapps.com
sportmeclub.com
cms.landing.ss.hr
stephenc.art
www.supercodingball.com
semadashboardinternalstage.talktosema.org
thalitalucarelli.com
timgiromagny.fr
timosi.ch
topcharts.tech
turisfreelance.com
www.vaihde.io
android.vidyakul.com
www.viq-scores.co.uk
presidente.votei.app
willowprescott.com
www.wizpiebooks.co.uk
test.wordplay.dev
egp.zrm.vn
Other domains in certificate