Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pinar.cammetalapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AF:A8:E5:69:02:16:A2:00:9E:B8:10:0F:F7:5B:74:7A:B0:4C:91:BD:E7:F9:34:19:2D:8A:D3:37:D0:41:55:9F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.profiserban.ro
133de.dev
1622.farm
aarogyahealthorganisation.com
www.actingproapp.com
aireel.io
alrizvan.com
www.amberferenz.com
arashkh.com
webapp.ascendingfate.de
fcmobile.athlete-era.com
kroniken.bjerre.net
bomfinfs.com
bookmyloadindia.com
pinar.cammetalapp.com
carlosberetta.dev
chauapps.com
www.lengpizz.co.id
www.ecampus.co.in
crossliferuss.com
datastorecolombia.co
www.earphysics.com
my.uc-bcf.edu.ph
id.emmalabs.io
www.emradsinc.com
englisch-in-siebenmeilenstiefeln.de
www.evaksine.no
www.eyemasterphotography.com
www.favemoji.com
fixlsolutions.com
admin.folliacreative.com
garson.io
gocast.jp
gummarusolv.be
hmcte.info
academy.hotelincloud.com
www.hya.app
idonsoftware.com
www.jascolanka.com
link-tai-wo.jec-digital.com
www.jennchance.com
paperpusher.kakkabtech.com
kingsandy.com
www.kingsandy.com
link.kolektifhouse.co
resume.kooikers.net
kravensa.com
krishakagritech.com
www.lagloriaesdelsenor.org
portal-web.lahornilla.cl
travel.lancehawks.com
www.launchpadlogic.com
www.lianncreative.com
shop.lifo.ai
lukassaul.dev
www.mananverma.com
www.miacademiaapp.es
masksofluci.monolith.gallery
catalogo.motosalo.es
demo.motoverse.games
www.nelloreciticabs.in
neurogenesispsych.com.au
noacco.ee
attorney.organizelaw.com
www.oztraveldiary.com.au
bdb.pepperpin.com
www.phamousmediagroup.com
pierpermit.com
www.preeority.com
www.randofacile.fr
raymondbuildersinc.com
rentbook.com
www.ritamkon.ar
www.rvsaalpine.com
salona.org
scottkip.com
seawoodsventures.com
demo.set.live
shivflex.com
www.moje-staging.siepomaga.pl
sketchyrun.com
snapsites.ai
auth.snl24.com
snowblinkstudios.com
srforreta.com
go.surfchat.app
www.synergistic.ca
taqapp.com
themadcorp.com
toporchev.com
go.touchplan.io
app.development.trackbar.com
adgm.urbin.app
uscene.co
vellar.app
vincitcalifornia.com
www.w.events
www.wondergrow.org
admin.dev01.wowdesk.jp
yefiafrica.org
Other domains in certificate