Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev-admin.souschef.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 16, 2025
Valid Until
February 14, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:C4:83:45:21:6A:F0:FD:BA:7B:04:36:0E:B6:5E:76:61:A9:98:25:68:57:1E:2A:C6:4D:0D:22:DD:1F:AF:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.magpowerpune.com
slush.12traits.com
adam-seddik.fr
fitness.aidashboard.tech
talk.anroco.art
av.ant-gar.de
appsatease.com
areebaasad.com
www.automaksud.ee
axiomatec.ch
b612.ai
pay.backyardstudios.no
www.badmintonvalladolid.com
constra.bandhoo.com
www.berop.cz
www.chadb.com
chatbotdirecto.com
recursion-schemes-by-example.chrispenner.ca
city-on.gr
admin.nieuportmews.co.zw
www.codyduong.dev
conectafoot.com
cosmic-shores.space
ctrl-alt-sam.com
www.platform.cybr.no
meals.dawsat.com
djsparks.com
q1-track.dpdlocal.co.uk
pda.vac.eceos.app
eshanidas.com
www.exhibit.dev
staging.experimentlabs.in
cms.fairycat.biz
ferbs.com.br
inspire-gscvolunteeringawards.framez.sg
get.fresbopixel.com
links.freska.fi
link.staging.goodlifecoupons.com
www.gtasks.app
www.helloannie.co
herospace.app
www.hotelshriambica.com
linkstage.hype.it
ihax.org
phonebook.iraj.app
jawsai.ai
cockpit-staging.joinsherpa.io
admin.jstmahasabha.com
crmadmin.krretails.com
lafabrica.ltd
lapatatechaude.ca
frontend-qa.staging.letsventure.com
www.lise.com
www.lizzrobbins.com
localee.space
icons.m-link.no
www.meed.app
www.michaeldavidoconnell.com
milseansoftware.ie
yumaway.mytrace.com
app.nakipower.com
doctor.novemapp.com
www.nowordwasted.com
www.oncoknow.com
lctrh.paco.app
www.pandes.co.uk
piyiart.site
dev.ppsms.my
preptaxcorp.ca
privalens.com
proximitygroup.co
streetbangkokbastille.order.pulp.eu
residenciavg.com.ar
rjporcelanatosrs.com.br
runaroundtoronto.org
dev-admin.souschef.io
dharmapuri.ssddroptaxi.in
theni.ssddroptaxi.in
tiruvallur.ssddroptaxi.in
tiruvarur.ssddroptaxi.in
strk.co
staging.stylexplore.com
szef-inspiruje.pl
tapmenu.tapmenu.app
app.telugustop.com
tendevt.com
create.theknocompany.com
answer.thrivewithdory.com
topsnap.app
mckessoncompile.trustin.app
email-development.trybasket.com
www.tunelogs.app
qr.turnosweb.app
ucoperationsllc.com
www.veteranswarmemorialtx.com
app.vetrina.com.br
vibematch.app
testdomain.vyannjan.com
www.woweast.com
yournextboardgame.co
Other domains in certificate