DNS Gurus
Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=coordinator.hippoksa-test.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026 50 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:99:F6:BD:3D:82:69:5C:24:4C:3B:A8:B5:D1:9F:4D:6E:D3:18:00:EE:D5:29:BB:E0:4F:41:01:A7:78:10:88
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
www.tinythoughts.me

Other domains in certificate

keneya.afrivac.org
cfunc.agilearn.app
portal.anjaconline.org
dashboard-webapp.applogsoft.net
appstermobile.com
baumgertelstrategies.com
www.beccamingachiam.com
bkudarnik.ru
stage.app.bullwhip.io
app.cannabismd.nyc
careclientcrm.in
casadepeles.com
chchomoeopathy.com
cmd.contact
unigen.co.in
beyondmarketing.co.kr
alpha.ctrise.org
zadania.derda.site
www.develoving.com
diedoku.com
phx.drive-la.com
developers.ecosystem.co.uk
www.emlhcorp.org
app.enhancedapp.io
line-statistics.dev.entur.org
multi.eraman.app
firebase.eversystem.co.jp
auth.fat-collection.com
studio.financialcanvas.co.uk
flighttrail.app
frankenbottle.com
frpichelaria.pt
painelacecatanduva.g2canal.com.br
gagpro.fr
dev.geekifyme.com
app.gerard-bertrand.com
www.giacomoportfolio.app
seller.crave4desserts.goeatnow.co.uk
fbdemo.goga.jp
gtmkt.ai
dev.harpermedia.digital
coordinator.hippoksa-test.com
hueclue.app
www.dcmhflsa.ilymgroup.com
www.indiapub.org
www.innovancebd.com
inukso.com
portal.isnitt.no
ln.jetexe.net
jhrdevelopments.com
www.johnnytouch.com
egencia-sdk-sandbox.joinsherpa.io
jptprofessionalpainters.com
www.kaufdeutsches.de
kippou.net
kompanio.net
kuribelle.com
www.kvi2.se
lifree1.com
luzmariarenjifo.com
travis.webhooks.m4m.io
malakmahdy.com
merohome.com
invoice-dev.muessig.app
auth.myjunto.app
cl-print.mysodexo.app
nexhuk.com
oeson.in
cp5672142083457024.order.place
www.outofsyllabus.xyz
passpass.io
pfadfinder-opfingen.de
www.precisionsystech.com
pretorius.family
prosense.me
www.forecast.rengydevelopment.com
app.rescuebase.net
rockpaperscissors.app
admin.rpnva.org
safemode.app
seepareddy.in
insurance.sentinel.ng
tiempos.signandrun.com
app.simplifind.it
sindicato.app
portal.smoxy.app
www.stoktalk.com
nano.summitwellnessgroup.tech
www.super-good.org
bodanataliaymario.swanmoments.lat
apps.theoryoflife.com
aib-onboarding.vaultigo.co.uk
vfl-wolfsburg.vebasoft.com
visualvue.app
voxtome.app
www.web-dojo.ch
wordwonders.art
mis.xleduglobal.com
yeeoid.tech