Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.swafpapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 30, 2025
Valid Until
December 29, 2025
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
00:C5:62:81:61:B4:47:9A:DA:6A:45:F4:4E:A3:F8:8D:1E:C0:4D:9D:27:E0:71:F3:6A:5B:D0:79:C6:C4:B1:05
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.verify.pupford.com
web.altairgraphql.dev
apextoolworld.com.co
www.as-group-finance.com
app.audiencerent.com
www.baathconsulting.se
sp.brmodels.love
bugarray.co.za
health.at.calculatorhub.app
functions.classroomscreen.com
besteachers.ynet.co.il
www.colinkeilbach.com
links.uaf.com.hk
www.cowriets.com
www.dataspection.com
www.dengthomas.com
develentum.de
www.districtpaint.com
doingstuff.in
q1-depots.dpd.co.uk
dc.earningsahead.com
easyqsoftware.com
devlink.enchora.com
essentialx.us
www.estudiopws.com
ui.flawwwless.com
branding.geonet.me
getcarmahealth.com
www.getsoovi.com
www.gfmri.org
www.glaniur.com
infoair-p.grouplinknetwork.com
www.grupoiluzia.com
highcastle.asia
www.hillbarnlabs.com
spp.covid19.intellivale.com
jeremyrabaino.com
resume.jhonatanlaguna.com
www.kevinpatrickwestropp.com
kooksbar.com
kusariventures.com
physician.dev.lifemd.com
www.livelovebeirut.com
www.mailertrack.com
www.mcg-systems.dk
kilpailuehdotukset.merirastilanmonitoimitalo.fi
miaiscute.xyz
www.midlynk.com
www.moetikmehierdrukovermaken.nl
mojodeveloper.com
auth.mommagame.com
www.monticellomushroom.com
mint.moosevshunger.com
www.mvpitsolutions.com
mytfloans.com
link.mytio.ch
app.nanalingo.com
newportboatparade.com
alpha.onshoreguide.com
www.optplacer.com.br
admin.ourdemy.dev
app.oxunrowing.com
packbeez.com
playground.paulprice.dev
www.photoswidget.com
pingrrtest.pingrr.app
planet-tongue.com
www.playhooked.com
refer.playship.com
sistema.premoldadosconcreta.com.br
www.psychologyserviceslittleton.com
www.pyzasoft.com
www.redyapp.com
researchon.com
www.resourcemodelingsolutions.com
www.retromatica.in
cba.rflex.io
www.sachsoft.com
linet.safe-balance.com
www.skilltree.seerium.com
setfree.fi
sps-web-staging.shaoke.nl
www.siniscape.com
www.solanumsystems.com
kura-text-audio-tools.spaceeight.net
student.fans
business.staging.svenjobs.com.au
dev.swafpapp.com
bodacireyhenry.swanmoments.net
www.switchsmartly.com
www.tedxmithibaicollege.com
www.thegreenjacketpool.com
www.thetglawgroup.com
tuvanosa.com
www.typescript-rtti.org
governance.usdtify.com
waterproofgrwm.live
wearepicky.com
localhost.whyq.com.au
yndooo.com
Other domains in certificate