Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=isober.co.za
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
16:E3:7F:76:84:C3:3D:DB:6A:83:8B:80:58:EE:FB:3E:F6:87:55:D6:76:48:46:9B:67:50:77:FC:97:74:EC:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.matan-dayan.com
acova.io
admasystech.com
go.amadornes.com
geometric.anagraph.io
partner.appointme.net
mvappmicrofranqueado.appshare.com.br
demos.beereaders.com
verify-dev.sandbox.beforepay.com.au
beremy-sl.com
blackstone-eg.com
link.botslovers.com
test.budgiebase.be
carbonspace.ai
cardapp.me
web-irma-mail-actions-dev.cc-irdigital.pe
docs.beta.aigateway.cequence.ai
cheat-codes.app
chunkcookiebar.clau.io
fanscope.clubfunders.io
conisontechnologies.com
portal.dealcollab.io
www.dgctechnology.com
admin.dges.app
www.dominicfrei.com
doowr.com
dreamrin.com
www.ecu-pay.com
www.edyant.com
emotiondetection.app
l.mailcraft.eu.org
www.exekucepodlejmenazdarma.cz
www.fhl.one
app.fitportal.uk
www.fortunaoliva.es
georiskcaspian.com
live-meeting.german.dog
www.admin.gofoods.pk
app.gs926.com.ar
gunesyurdakul.com
habihabits.com
hyperdexa.ai
ideograph.dev
kdc.indiandevelopers.org
resumengigante.inter.mx
isober.co.za
www.jonathanbrown.engineer
abc.kakathink.com
keepflying.org
kkiokio.com
auth.lawedawe.com
lebrixcorp.com
staging-api.legalkarma.io
demo.linehopper.app
toets.luistr.com
lwalls.dev
mctechservice.com.mx
introduce.me.kr
minuteuroeuf.fr
moneymagnet.biz
na-cp.org
ndsregistry.com
nehasule.com
www.nolimi.app
obsdeck.com
www.oeksound.com
pujcovna.ohhappyday.cz
www.oneminutecase.com
www.onoranzefunebriviesi.it
weask.fantasticdream.org.hk
www.otreas.com
hm.overview.one
pams.pentfieldtechnologies.com
orophile.prasunchakra.com
admin.premiercardgrading.co.nz
www.profintech.in
formbuilder.quicksignapp.net
uat.resbutler.com
www.rvmarathi.com
dev.admin.rx.me
sesamebagels.sg
link.shuk.mx
sms.skycase.dev
mef.bomify.solongo.app
showroom.staging.spase.io
etm-demo-usa.spotparking.com.au
www.statix.it
widget.uat.bs.tech-azur.com
knightrush.thoosch.de
tomplewe.com
app.trainme.com.br
transfair.today
transglobalcanada.com
donor.tscpl.org
gapper.tupoliza.mx
www.viggascolab.com.br
app.vrxconnect.com
moura.wedash.com.br
worduel.app
yamabu.info
Other domains in certificate