Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.simplyschool.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 14, 2025
Valid Until
January 12, 2026
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:80:CF:A1:0C:CD:F1:4E:CE:1C:B8:4C:83:BA:36:14:BF:E1:1A:A3:C3:C0:E6:9A:AE:78:2F:7C:3B:B4:E3:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.smart-schulstart.de
records.3timpexglobal.com
acmsscbe.com
www.adeveloper.com.br
feedback.advanda.app
www.africadollarstore.com
innova.akdroptaxi.com
albertovazquez.dev
www.amshienterprises.com
aplyease.com
www.arturmarkowski.dev
auditorwala.com
awakend.com
curriculums.azumio.com
www.beanbazaar.com
bendzsa.com
www.bolel.us
links.robitv.bongobd.com
www.bookfind.io
qa.caddieinsights.com
ccasner.com
poa.chateau-pape-clement.fr
www.citizenshipquiz.ca
empresas.criptan.es
cskimkaratefwapp.com
cutlabournetwork.com
cynthiaobasuyi.com
dl.dacopa.com
www.dealcop.co.uk
www.delexbrokers.com
fmb.digitaf.de
doddy.se
www.edean.de
evantheinfra.com
experiencebobcat.com
english.finitefield.org
fint.fi
www.freshtune.org
app.fuzzycircuit.com
gobekli.xyz
gopowerai.com
gorilla.training
ilu.hassanalrawi.com
www.hassanalrawi.com
linkwith.inspired2go.org
www.kickadda.com
kovyla.pub
lazcanosamano.com
www.lechantbeny.fr
www.m5-portal.app
martinrajniak.eu
www.maxwellshen.com
mealime.app
melvintham.com
www.menghui.io
ghredux.miguhruiz.xyz
www.nbooks.pt
newspassport.app
minnow.nextinline.io
finop.nfpsp.net
www.ohparking.com
join.onelinc.com
invoices.onlinetradesmen.com
opensync.solutions
otofix.otoactivate.com
paintopiatx.com
parkur.group
paybillto.com
www.paybillto.com
proday.mn
resources.rapidresponsewv.org
www.runejs.org
salihkhan.me
scanafy.de
schapiro.biz
sevara.dev
www.sfmb-foa.com
debug.shallotapp.com
www.simplelink.in
www.simplyschool.app
www.skudu.online
snehmehta.dev
sphiverse.org
bodatorresrivas.swanmoments.com
symply.dev
technifyinc.com
screativo.technit.app
thetglawgroup.com
www.timwobith.de
www.titusebbecke.com
toddlerwalks.com
www.traitte.app
triangularitylabs.com
vitaltraining.turnosweb.app
app.udchalo.com
dev.vgcode.vgv.dev
app.logistica.waylogtech.com.br
worstgamesever.com
dashboard.yashchoprafoundation.org
yayago.ca
Other domains in certificate