Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.bog.ge
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
01:2E:A9:AE:9C:7B:4C:6F:54:BF:C4:38:41:DC:10:BF:4A:76:FE:F5:80:72:ED:80:0A:CB:B8:9B:76:B4:9C:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.lang-en-gelukkig.nl
api.linkafrica.28east.co.za
alphatech.com.pe
andoescuchandomusica.com
www.antoniosmagnet.com
aptscompany.com
bared.au
www.bargmann.eu
barmjhom.com
www.birdergame.com
app.bitsyadvisor.com
app.bog.ge
www.breakinsoft.com
www.colorsigma.com
www.10xdev.com.tr
www.compcodes.com
ddhapps.com
lnh-s.dev-ltl-xpo.com
apps.dollro.com
portal.donationpoint.app
esmalteriadali.com.br
fantao.org
www.franlinaresgorria.com
hafnertechgroup.com
customer-portal.hebat.jp
www.helpinghandlk.com
www.hillarybutzin.com
www.iamyan.com
did.identicum.com
gol.imersys.com
infinitevoltage.com
demo.inspectogo.com
prodlinks.interacta.space
www.intygschecken.se
ssindia.onsite.invue-live.com
warehouse.mminhdev.io.vn
app.isper.net
www.iteachatlanta.com
web.itrood.com
javierbongiovanni.com
www.jineeshjacob.com
www.jnjexcavatinglandscaping.com
joseangelcabin.com
www.just-sign.com
kardkey.com
karshakanaturals.com
kruse10.com
kshiyarise.com
lazymunk.com
www.leasebux.com
leezova.com
www.letsallcreate.com
www.louisdeveseleer.com
lukapokes.com
dev.app.lynxai.tech
lyzerx.com
app.m-t.io
aq.malva.work
matchday-sports.com
mateusduraessantos.com
www.matteopiotto.com
mirzainternationals.com
projects-ft-tech-radar.internal.ml6.eu
careers.mobilityandequipmentsector.com
sudoku.morphyish.com
musabmjafri.com
screencolor.nabilamerthabit.com
redirect.nanea.app
naturalfa.hu
catalogo.naturalmente.uy
www.nipto.app
www.nonnacafeteria.com.br
npitglobal.com
athletemoment.olympics.com
vc.coza.org.ng
orgaligner.com
trial.pandora-doc.com
www.pfintools.com
naungpain.piticommerce.com
soc-uat.prodeo-live.com
pudding-table.com
epex-album.re2fe.com
younite-album.re2fe.com
physical.remotesocial.io
robertschaedler.com
ronpet.app
s2nventures.com
scrumit.app
www.shift-studio.ro
app.songyft.com
spirint.tech
submary.app
sunburst.app
www.sunburst.app
supersite.app
www.tabacchirun.it
www.tamsinlewis.uk
vvbergerven.be
via22apac.workspace.training
blog.ykumards.com
Other domains in certificate