Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=koalay.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:77:47:9A:6C:74:82:1D:88:48:75:48:F3:F1:BC:D6:AF:B9:B1:A7:D5:BF:5D:AD:0C:C0:E7:AC:D7:B7:1B:B0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.misaldo.com.mx
admin.2value.ro
presentation.3key.company
www.aahana-tech.co.uk
awards.absipconnect.com
judge.accountancyawards.ie
aleshareed.com
alexstep.com
aozflicks.aozwithphil.com
www.ayutthayathaiwellness.info
cogresnet.ccv.brown.edu
miao-walk-test.changwenhan.com
links.gordon.cloudns.ch
app.stitch-it.co.kr
www.cookieplanetpr.com
creatorsofproducts.com
www.denysschen.com
sidev.desarrollapps.com
bv.dev.br
divicom.portalcliente.divitech.com.br
www.dominicfichera.com.au
interconsulta.drtis.com.br
medvatic.dwebbox.com
saleskit.e-incube.com
advocate.eqwity.com
www.exitround.com
www.ezw8.com
www.fastfoodfriday.com
fayda.net
www.figmentresearch.com
apps.folkov.com
foxar.education
friskbris.no
blog.giveactions.com
givingtreeventures.co.uk
stroom.gkcenturion.co.za
gentosha.goetheweb.jp
www.gyronetics.com
www.hallpassplus.com
www.head2toes.org
app.hirameku.com
horizonfreebies.app
www.iconiqsports.com
itte.dev
www.ivorycoco.lk
www.joncel.com
koalay.in
old.konstantinedatunishvili.com
www.laestaciondeelrobledo.es
dashboard.dev.legalsphere.co.uk
go.lemberglaw-alert.com
www.lingotable.com
chat.linky.app
www.livbraiker.com
lucaspinazza.com
machadocorretordeimoveis.com.br
maquinaria-tuto.com
www.merakiapp.co
murrayspellingbee.com
www.mwolfe.io
payments.nestria.org
alexandre.harano.net.br
audits-tyler.nucor.report
register.ooono.dk
www.or7tech.io
checkin.oresalo.com
parcelquest.co.za
patashala360.com
www.pattiosebold.com
www.pequenieses.com.ar
pickadoc.de
www.propmotive.com
www.redantfood.com
revitalize.me
www.royalsadat.com
rudigualter.pt
static.dev.scim.io
merchant-applinks.sendperks.com
shop.shescraftycrafty.com
link.skilldar.com
admin.sliceq.com
sniperprice.com
www.southpole-shop.com
www.svsuathleticscamps.com
takerhat.com
gws.tokyo-scaler.com
share.tracknet.in
trailmedia.co.uk
turfeaposta.net
integral.uamiguitos.com
yamato.uechiryu.okinawa
dl.ummah.io
uueauclaire.com
uat.vegaspread.cloud
youtube.viasacra.band
weg-damit.at
admin-staging.screens.wntr.io
www.xxiii.media
yaft.io
emoteresizer.yoshisaura.com
Other domains in certificate