Open
Cached
·
1h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=new-prod.talent-alpha.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 24, 2025
Valid Until
January 23, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:91:63:DA:2D:0A:D5:56:22:96:5F:9F:CA:C9:3B:79:3A:85:64:09:E2:C8:8F:64:91:CA:42:64:1E:01:3D:05
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.omcdev.com
aalbersai.nl
adarshnambiar.me
cybersecurity.adeptly.ai
saudecomsabor.americanopolis.com
app.aplancoaching.com
uat-link.apollomatkat.fi
arki1.com.br
convertics.arlo.co
www.aureagustavo.com
autotitledirect.com
spkcloud.auxswot.com
axisroot.net
meet.beyondboundaries.app
m.bgame777.ws
www.bibel-leben.de
hhd.bmgomg.com
www.hhd.bmgomg.com
bootsgutachten-berchtold.de
web.alpha.chikoo.app
www.colejrogers.com
covaliu.dev
www.crowdconnect.cc
davidanddivad.us
dexcounts.com.br
digitalpaymentsolutions.in
dotawho.net
dotech.app
dev.www.doubleacegolf.com
www.drilbu.com
kampagnen.eazylog.app
electrictheory.co
greenmini.host
www.guenda.xyz
authtest.happynessfactory.in
harutune.name
hearteries.in
sotreq.hrestart.com.br
webchat.hungnhb.dev
icmg-is.com
ijr.com.br
inoa.capital
leagueofartists.itera.es
jaspers-blog.net
josephsoliman.org
www.keinex.com
keithdesantis.net
kirjanpitopalvelutoivonen.fi
koigroup.io
www.kougar.io
kunalkr.in
portal-homolog.kwikledgers.com
app.lacrosselab.xyz
www.lemus.app
www.leonardsoto.com
app.letjob.net
www.letscng.com
alt.literal.ai
user.locoff.in
lorcanwellness.com
mathshour.com
www.mausipop.de
megaparrilladaargentina.com
migtarjetas.com
www.movit-fitness.de
app.myvoteproject.com
www.navigado.fr
kancilapp.neovasi.com
www.ninerasa.com
nitish.design
nlocate.org
www.onepotpony.com
minneapolis.profit.orderprinting.com
cn.toeic.polylearn.co
main.praniverse.com
qr-rawaj.com
www.quizplanet.game
app.reglantern.com
reg2sign.removis.jp
rocketeer.fans
saascredits.ca
salebolivia.com
seidquest.com
singinglessonsexeter.co.uk
dev.siwa.io
softops.app
srisaienterprisescovai.com
test.stagb.in
stgjellyfish.com
www.svstransport.in
app.swapkaart.com
l.taktak.be
new-prod.talent-alpha.com
dev-links.tazweedapp.com
noussommesmarianne.tfrere.fr
web.theseekerspath.com
toddm.net
tsumori-project.com
miau.ursem.cc
app.waitbird.com
Other domains in certificate