Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=webapp.venuetechconnect.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:FC:61:EA:9F:62:1A:4C:62:61:1B:A4:39:5A:9D:32:6A:DC:ED:15:F5:2B:50:4F:CF:32:93:A2:9B:71:C0:C5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.wehnaumgatedcommunity.com
gioco.4bp.com.br
www.anastasiamiliano.com
testing.austta.com
avinyaautomation.com
beta.baseworks.com.br
bcslebanon.com
berkahclean.my
staging.umbrella.blackarctic.studio
www.bobsizoo.com
public.kkip.com.my
staff.kkip.com.my
vendor.kkip.com.my
www.connect2.in
southernsaladco-orders.crispnow.com
curiousoft.io
curipha.jp
pms.ddzone.xyz
myteam.dlchub.io
massdrop.dropshiptee.com
tiruvarur.eacabs.com
eaglesne.ws
cdn2.earningsahead.com
scbeasy.eventpop.me
qr.expritan.com
app.facial.media
ffxivprogress.com
flutterlab.io
fontanoza.dev
foxpricesheet.fox-pest.com
mca.gkibria.com
www.gorillasports.com
gvkrealtors.com
www.happystagger.com
app-dev.harvestassist.com
hnsummary.com
www.usa.ihhsfair.com
adcenter.familotel.innfactory.cloud
interalpina.com
www.j7126.dev
jamesmtchou.com
jengo.co.za
www.jobampla.com
johnshanahan.com.au
staging.joinsplyt.com
www.kaibaier.de
katiecheng.com
www.kevinvuillemin.com
development-happiness-webapp.knolskape.io
www.komonori.jp
konstant.uk
individual.legalhobprime.com
jupiter.littlelives.com
beta.studio.logoinvisio.com
quiz.lojavirtual.com.br
app.lumineet.com
maxentwickler.site
www.maxentwickler.site
www.microdynamics.cloud
www.millionways.co
www.musz.io
app.netcomace.com
www.nicolas-valencot.com
nlb-realestate.com
whitelabel.onfact.be
www.opyn.io
www.osparis.fr
www.panag.ca
pedy.site
phile.dev
proftware.com
www.ptz.im
raicescapital.agency
www.ravivermawriter.com
rawwcuts.com
remoteobserve.io
www.renaultbolsa.com.br
next.retrollector.com
korporat.ruangkerja.net
aha.rxcx.au
sadcap.com
deals.seniorsavings.com
www.shenli.dev
shimlataxiservices.com
www.southhillbreadbox.com
natterbox-app.speakylink.com
bennersamcoadmin.sqwadhq.com
stavrones.com
oauth.suncyan.com
qa.teqdriver.com
topevents.pro
topsun-fpc.com
dev.tracknicity.com
webapp.venuetechconnect.com
www.vincecyriac.dev
preview1.fm.stage.voiapp.io
vrworldspace.com
yanartech.com
dnamapgenetictest-report.yourgutmap.co.uk
zdolnejperspektywy.pl
Other domains in certificate