SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=www.schooltextbook.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 15, 2025
Valid Until
July 14, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:E5:6A:7B:67:DD:BB:A0:2E:03:1F:19:AA:F9:EE:A4:A9:52:4D:C9:6C:F2:19:7C:62:78:42:75:D0:CB:A4:4D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
brightmindsol.com
portfolio.acrux.jp
lt.africanhistory.online
www.agilistic.ai
controle-financeiro.allpasso.com.br
andorfiauto.hu
aptinnov.in
www.aquilaacademy.co
opsready-resilience.aum.bio
balajiprecastwall.in
beneathourscars.com
www.bonikacaroline.com
www.bookme.pl
brick4u.org
links.bunny.money
shawarmilaokl.capromenu.com
edss.clinicspeak.com
hostmaster.clonebrews.com
auth.ksong.com.tw
app.contentoh.com
www.cosseno.com
cumi.vn
www.deephabits.com
www.ecofriendlyeve.com
edigicloud.com
cv.emage-me.com
sudachi.emuplace.app
ionic5fullapp.enappd.com
xmas.escthegame.com
admin.film-point.com
es.firemenu.app
firstaustralianscybersecurity.com.au
fitrunner.org
top-up.fonbnk.com
admin.fordays.com
www.forecastweather.co
www.fusionbrow.co
gamesforbrands.com
www.girishtaware.com
www.gloryofgodcenter.org
gruut.network
gusdor.com
www.kennethgzh.com
www.kujeera.com
clinician.kyndwellness.com
lemondate.app
www.lockkeygames.com
avc.lorenz-graf.com
eqptlic.ltl-xpo.com
magik.studio
marisabernard.com
imgur-reloaded.matthewbeandev.com
lovemicro.meander.media
www.ofvresthlm.se
nicholasterrazas.ontolabs.com
stickers.kan.org.il
www.passdr.com.br
www.patina-45.de
potlucky.io
pwts.ae
www.s-tyd.com
buyer.pre.prod.samridh.ai
www.schooltextbook.in
shannonhspence.com
sharemystory.us
silicontree.com
sisco.kz
siscoapp.com
www.snowjoe.com
ss-trenchless.com
stacklawyers.com
pfeiffer.studentstore.com
surshrutimusictherapy.in
syncker.com.br
www.taohuang.life
track.tapnow.com
dev.platform.tawny.ai
conceptionbay.tcsappts.com
thefindfirm.com
bestellen.therestaurant-moenchengladbach.de
www.tokendonuts.com
link.treaclefactory.co.uk
childrenfirstfoundation.trustin.app
tukrta.com
ugdeveloper.in
uglydawgtools.com
uma7.com
go.uniqore.com
go.urbnapp.com
uu26mi.com
videogameon.com
api2.vis-its.com
www.viscocity-vapor.com
waitwing.com
watchfaces.club
wattsperkiloforthegirls.com
xidsoft.com
www.xtoearnings.com
yashalavie.com
yassinekhayri.com
Other domains in certificate