Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.tokbor.uz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 20, 2025
Valid Until
January 18, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9C:70:AC:45:1D:8D:25:B0:22:7B:AA:96:38:AE:0D:BC:9B:7A:9E:15:B8:35:CD:20:B0:CF:0B:2E:94:DE:07:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.starlingburger.fr
2048.aiunlimited.in
3jtem.fr
aknow2.com
www.amanaasia.com
www.aniketkumarsinha.tech
rac.apm2.studio
www.arkabhowmick.com
aromakitchen.in
collections.arsbrevis.net
atsumiho.wedding
www.auxcordkings.com
www.bh-42.com
www.blg.dev
breakingthrough.net
carpentrysquare.in
www.castmix.app
tools.charonworks.com
opsflow.ciphersolution.com.au
painel.classificadosbahia.com.br
jewellery.constlab.com
chat-force.coruscant.co.jp
www.crustypizzaandburger.com.au
dlsuacm.org
admin.dtuprayas.com
viewer.easystory360.tools
eatrics.com
colegiocondederomero.edu.mx
www.elamanpolku.fi
trackingapp-test.esports.cz
frontops.exhands.org
admin-uat.fastwork.co
fintechpro.online
www.food4up.com
cv.fouzitejini.tech
gdziesienapic.info
link3.goemon-jp.com
goulao.pt
nhansu.hosodientu.vn
hydronn.in
www.ilpostino.io
articulador.infogab.com.br
academyvirtualtour.infrabel.be
links.inqli.com
internetdonkey.com
www.dev.itmr.xyz
jetysalina.com
klerti.no
3hunt.knobs.it
www.knotpoet.com
www.lamoretta.com
incmty.lapieza.io
vote.lohnn.se
maggfoto.com
mdopix.com.br
www.mecamindustria.com
evaluate.public-realm.gtce.mobilitymojo.com
dev02.momentum.earth
mwino.cash
staticcdn.mytestapp.me
s.aql.or.id
app.pegastransbg.com
movistarmexico.staging.platformkids.com
www.psi360.com
rajconcretes.com
www.rajconcretes.com
www.rcwendtpaintingclassactionsettlement.com
ricardosantos.me
www.rme.app
www.rootedlb.com
webedi.rsti.pl
flix.salt.pe
servesync.online
www.shadethesims.com
alex.shields.ws
www.showpigfilms.com
sidkollen.se
www.sitelikethis.eu
app.softspace.io
ssfitnessclub.in
straniggdora.hu
www.supatest.ai
sventerprisesprint.in
talk52.com
tbrcafe.in
chat-mod.tbrplay.com.br
cribbage.games.tetherstudios.com
thriftmandu.com
app.tokbor.uz
app.tonytalks.nl
driver.dev.transportamf.ca
hitpa.tresastronautas.com
troxlabs.com
auth.tu-med-videos.jp
www.tuarra.com
www.viajeslasvillas.com
managing-tool.waio.ch
woodpineavenue.com
www.worpra.com
dev.xenphira.moe
Other domains in certificate