Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=3-tomates.pedix.app
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 26, 2025
Valid Until
March 26, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:D8:FF:2B:4C:FD:1B:81:8F:BF:9F:16:9B:AF:59:F8:91:42:3B:AE:1D:AC:69:19:02:D0:88:D2:70:87:F1:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.drone-test-generator.com
agikx.com
ahkeongtrading.com
www.ahkeongtrading.com
aldeiacode.com
menu.aljazirestaurant.com
amipreorder.com
andrewdenooyer.com
askgroupegypt.com
atlanticembrace.com
autopolo.cl
www.ayanengenharia.com
bagratbuyer.com
berylliumtechnologies.com
biancazephyr.com
bloqs4.com
bloqs4good.com
widgetsource.brushfire.com
bytenest.org
clappr.app
www.classemo.com
user.legal.coconala.com
invite.coffeespace.com
www.alzar.com.gt
builder.datafycms.com
recurcrypt-checkout.denliehoo.com
recurcrypt-dashboard.denliehoo.com
beta.deptofgood.com
digital-spring.de
www.dikmax.name
www.esliegypt.com
etageospatialsolutions.in
fahimferdous.com
www.fartsim.app
fler.art
mahjongsolitaire.games235.com
wordsearch.games235.com
www.gammanet.com
gixgameshop.com
swatantra.globalgarner.com
nutrition.me2-dev.gmal.app
developer-staging.greythr.com
intelligencekit.com
ecadmin-dev.iterate.ai
ecadmin.iterate.ai
www.jacinto.design
jaxsolution.com
www.jcaf.es
jwbaker.dev
www.k001.me
link.kymdanstore.vn
massivexppt.com
app.menupp.co
migom.com
mindcacheai.com
minorityreport.business
www.minorityreport.business
nanhnarong.com
nexigoenergy.com
noorsphere.com
www.northeast.dev
auth.pachista.com
www.patelmilin.com
3-tomates.pedix.app
alforno.pedix.app
armenian.pedix.app
asdasdasda.pedix.app
ayg-villa.pedix.app
barplazacurico.pedix.app
bigrestobar.pedix.app
budaburgers.pedix.app
bycaprichitosok.pedix.app
deco-maderas.pedix.app
granabasto.pedix.app
photonsolars.com
www.photonsolars.com
www.rfcs.cloud
rilalabs.com
sailanilogistic.com
sainikrmsrimc.com
www.scription.ltd
seguridad-mosgal.com
shelliconnerstudio.com
app.dev.studyu.health
tamizhrealestate.com
www.tianxu.ca
transcripted.ai
comics.vaki.co
corporate.verdanaev.com
admin-test.vnlp.ai
labelbox.vnlp.ai
livechat-vna.vnlp.ai
va-aia.vnlp.ai
va-test.vnlp.ai
developer.wink.travel
worqflexi.com
xn--bj8a.com
xn--brckenbauer-uhb.org
xn--comesaapropiedades-s0b.com.ar
xn--pgbng6dsbc.com
Other domains in certificate