Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=technovate-hackathon.ma
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 11, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
20:52:44:0C:56:1D:81:00:1D:03:21:C2:C7:67:7D:4E:0D:FF:4F:D3:F6:CA:83:D7:06:06:C4:D9:14:73:03:B6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mbitgames.cloud
1fin.one
www.243technologies.com
aako.world
ambittech.xyz
www.aromaklinikken.no
benjaminanoh.com
telemetry.bigfm.de
beta.bildin.com.pe
app.bonx.tech
mogy.bracelit.es
brahmavivah.in
www.briand-jardins.fr
chaui.de
chiclanaguiadempresas.com
christopherlewis.info
learn.drively.myspot.co.in
wave-length.com.hk
addin.contractflows.com
admin.creatyea.com
hash.dbr.mn
djjoelkupis.com
dotnetweekly.com
timeclock.dscpayroll.com
eosetf.io
www.fidtech.net
uat-gkmff.finncub.com
www.floindia.com
fluttercommunity.dev
console.fortunehomecare.com
verses.frc.nexus
woodblockpuzzle.games235.com
ghu.beer
www.myfootprint.globant.com
shop.gls-spain.dev
ims.halprop.net
output.haptic-data.com
www.hillsidehospice.com
nodeinfo.hnw.jp
testinghost.hypersensehuman.io
www.hyunmin.dev
www.j-ko.dev
jacksonkuzmik.com
test.market.jooba.ai
kiyang.net
oauth2.kyl191.net
lizardsquad.xyz
shindan.marmot.biz
www.martnmall.com
contracts.maxentwickler.site
www.michigancaregiving.com
www.myferrypal.com
myquickqr.com
nekvinda.net
skadden.neoufitness.com
test.northweather.com
ocureanalytics.com
web.ongoes.in
www.opticacuernavaca.com
ornet.tech
osekiretreat.com
app.ountravela.com
app.partsxchange.co.uk
pascal-iske.de
paulblunt.de
hakki.pedidomovil.es
poggiodelfarro.com
www.premium-outlet.com
v2.rika.proguru.jp
pugs.pics
www.quartto.es
ramsvilla.com
www.saleswriter.io
www.scavr.app
shikwambana.info
go.skyfallen.org
solver7.com
spyx.cloud
checkersmemorymatch.sqwadhq.com
dixiestatescramble.sqwadhq.com
bodasolanoperez.swanmoments.com
www.tamacountymutual.com
tarot-7.com
technovate-hackathon.ma
www.thehopestreet.org
thesouthprimeflats.ph
toplayers.jp
ttok.fi
tub.by
pass.ubeats.pro
ubjective.com
www.ubqtx.com
www.undergroundauto.me
vignet.nl
wheresnow.net
www.wipa.no
stopwatch-soft.wiselywidgets.com
vp2x64p29vmrvcrb.screens.wntr.io
stage-app.zentility.com
beta.zoomryde.app
Other domains in certificate